Threat actors are impersonating GitHub’ s security and recruitment teams in phishing attacks designed to hijack repositories through malicious OAuth apps. This ongoing extortion campaign has been wiping compromised repositories. Since February, dozens of developers have received deceptive job offers or security alert emails from “ notifications@github.com.” These emails were…
Gitloker Attacks Exploit GitHub Notifications to Push Malicious OAuth Apps
Full Disclosure: This webpage may contain affiliate links, in which the website owner would receive a commission for purchases made. This does not affect your purchase cost.