Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Developers Beware - Sophisticated Phishing Scams Exploit GitHub Device Code Flow to Hijack Tokens
Threat Intel & Info Sharing
June 13, 2025
gbhackers
A new wave of sophisticated phishing attacks is targeting software developers by exploiting GitHub’s OAuth 2.0 Device Code Flow. These attacks enable threat actors to hijack developer tokens and more.
Read More
GitHub Device Code Flow
OAuth 2.0
Phishing attack
GitPhish
Software Supply Chain
Publisher
Previous
Amazon Cloud Cam Flaw Allows Attackers to Intercept and ...
Malware and Vulnerabilities
Next
Critical Vulnerability in OneLogin AD Connector Enables ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/d03d_shutterstock_1195533151.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/e042_shutterstock_787451734.jpg)
