June 10, 2024, 10:24 p.m. | Sergiu Gatlan

BleepingComputer www.bleepingcomputer.com

Threat actors impersonate GitHub's security and recruitment teams in phishing attacks to hijack repositories using malicious OAuth apps in an ongoing extortion campaign wiping compromised repos. [...]

abuse apps attacks campaign compromised extortion github hijack malicious notifications oauth phishing phishing attacks recruitment repos repositories security teams threat threat actors using wiping

Sr. Splunk Engineer | Remote, USA

@ Optiv | Illinois

DevSecOps Engineer

@ Johnson Controls | Johnson Controls (I) CoEE,Pune

DevSecOps Engineer- Mobile Solutions

@ ZF Friedrichshafen AG | Chennai, TN, IN, 600116

Penetration Testing Principal Consultant

@ Horangi | Thailand

Penetration Testing Team Lead - SG

@ Horangi | Singapore

Penetration Testing Engineer III

@ Boliden | (USA) AR BENTONVILLE Home Office ISD Office - DGTC