PanicStation.org
UK USA
us Technology & digital loss calendar spam events • google calendar spam • iphone calendar spam • outlook calendar spam • spam invites with links • calendar events with phone numbers • random appointments on my calendar • unwanted calendar notifications • subscribed calendar i didnt add • meeting invites i never accepted • calendar phishing • spam calendar subscription • suspicious calendar entries • fake virus warning calendar • events added without permission • calendar account compromised • stop automatic calendar invites • remove spam from calendar app

What to do if…
your calendar fills with spam events that include links and phone numbers

Short answer

Don’t click or call anything in the events. Remove the source (subscribed calendar, invite auto-add setting, or connected app), then secure the account that owns the calendar.

Do not do these things

  • Do not click links in the event body or attachments.
  • Do not call the phone numbers in the spam events.
  • Do not accept/decline spam invites just to clear them (that can signal you’re an active target).
  • Do not install software recommended by the event (“security app”, “support tool”, “virus remover”).
  • Do not assume deleting visible events is enough if new ones keep appearing—stop what’s creating them.

What to do now

  1. Pause and take one screenshot.
    Capture one spam event showing the calendar name/source and the text with the link/phone number (helps if you report it or your admin/IT asks).

  2. Identify the most likely cause (choose one).

    • A new, unknown calendar appears in your calendar list → likely a subscribed spam calendar.
    • Lots of unsolicited meeting invites → your calendar may be auto-adding invitations.
    • Started after an app/service change → a connected app may have calendar access.

  3. If you’re on iPhone/iPad (Apple Calendar / iCloud): remove the subscription/source.

    • In Calendar, open a spam event and tap Unsubscribe from this Calendar (or delete the subscribed calendar).
    • Also check Settings → Calendar → Accounts → Subscribed Calendars and remove anything you don’t recognize.
    • If you see “Report Junk” for an invite, you can use it (availability can vary by device/account).

  4. If you’re on Google Calendar: reduce what gets added, then remove what’s already there.

    • Use Report as spam if it’s available (this typically applies to events actually sent through Google Calendar; it may not appear for events created by other apps/providers).
    • In Google Calendar settings, set “Add invitations to my calendar” so unknown senders aren’t added automatically (for example, only add when you respond / only if the sender is known).
    • Remove any subscribed/other calendars you don’t recognize.

  5. If you’re on Outlook / Microsoft 365: turn off “events from email” and remove unknown calendars.

    • In Outlook on the web / Outlook.com calendar settings, turn “Events from email” off (or tighten it) so Outlook doesn’t create events automatically from messages.
    • Remove unknown additional calendars (subscriptions/shared calendars) that appeared around the time the spam started.
    • If Outlook desktop is auto-handling meeting responses and creating clutter, you can review settings like “Automatically process meeting requests and responses…” (this is about response handling, not a cure for spam calendars).

  6. Secure the account behind the calendar (the step that prevents repeat attacks).

    • Change your password for the underlying account (Google/Apple/Microsoft/email) and turn on multi-factor authentication.
    • Review connected apps / third-party access and revoke anything unfamiliar—especially anything with calendar permissions.
    • Review account sign-in activity/devices and sign out of sessions you don’t recognize.

  7. Report it if you clicked, called, installed something, paid, or shared info (optional otherwise).

    • Report scams and fraud at the federal reporting site (type it in yourself—don’t use any link inside the spam event).
    • For cyber-enabled fraud, you can also file a report with the FBI’s Internet Crime Complaint Center (IC3) (again: navigate there directly).
    • If it’s a work/school account, report to your IT/security team so they can tighten org-wide settings or block sources.

What can wait

  • You don’t need to delete every spam entry immediately if they keep regenerating—removing the subscription/setting/app access is the priority.
  • You don’t need to decide whether your phone/computer is “infected” right now; calendar spam often comes from invites/subscriptions rather than device malware.
  • You don’t need to confront the sender or use any “unsubscribe” link inside the event.

Important reassurance

Calendar spam is meant to create urgency and get you to click or call. If you don’t engage and you remove the underlying source (subscription/auto-add/app access), it usually stops quickly.

Scope note

These are first steps to stabilize and reduce harm. If you entered passwords, installed software, or paid anyone, you may need account recovery and fraud-response steps next.

Important note

This is general information, not legal or professional advice. If you believe an account is compromised, prioritize securing it (password + MFA + revoke access) and seek help from your provider or workplace IT.

Additional Resources
Support us