Fake "Security Alert" issues on GitHub use OAuth app to hijack accounts

Published on March 16, 2025

A widespread phishing campaign has targeted nearly 12,000 GitHub repositories with fake "Security Alert" issues, tricking developers into authorizing a malicious OAuth app that grants attackers full control over their accounts and code. [...]

Continue reading on website
Other news

Malicious Adobe, DocuSign OAuth apps target Microsoft 365 accounts

March 16, 2025
Cybercriminals are promoting malicious Microsoft OAuth apps that masquerade as Adobe and DocuSign apps to deliver malware and steal Microsoft 365 accounts credentials. [...]

GitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 Repositories

March 17, 2025
Cybersecurity researchers are calling attention to an incident in which the popular GitHub Action tj-actions/changed-files was compromised to leak secrets from repositories using the continuous integration and continuous delivery (CI/CD) workflow.The incident involved the tj-actions/changed-files GitHub Action, which is used in over 23,000 repositories. It's used to track and retrieve all