Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Fake "Security Alert" Issues on GitHub Use OAuth App to Hijack Accounts
Identity Theft, Fraud, Scams
March 17, 2025
Bleeping Computer
A widespread phishing campaign has targeted nearly 12,000 GitHub repositories with fake "Security Alert" issues, tricking developers into authorizing a malicious OAuth app that grants attackers full control over their accounts and code.
Read More
GitHub
GitHub Accounts
Account Hijacking
Phishing campaign
Fake Security Alerts
Publisher
Previous
Attackers Leverage Cascading Style Sheets for Evasion a ...
Trends, Reports, Analysis
Next
Denmark Warns of Increased State-Sponsored Campaigns Ta ...
Threat Intel & Info Sharing
/https://cyware-ent.s3.amazonaws.com/image_bank/51f0_shutterstock_1080059423.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_250526632.jpg)
