MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
github
Recherche

Attackers attempted hijacking 12,000 GitHub accounts with click-fix alerts

lundi 17 mars 2025, 12:23 , par InfoWorld
In a new phishing campaign, GitHub developers are being targeted with fake “Security Alerts” where they are prompted to authorize a malicious OAuth application.

Successful execution of the Click-fix campaign, which has reportedly targeted over 12,000 GitHub repositories, can allow attackers full control over the affected accounts and codes.
Lire la suite sur InfoWorld
https://www.csoonline.com/article/3846732/attackers-attempted-hijacking-12000-github-accounts-with-c...

Voir aussi

github Google acquisition target Wiz links fresh supply chain attack to 23K pwned GitHub repos TheRegister18 Mar
click-fix Organizations struggle with too many data loss prevention alerts BetaNews18 Mar
attackers TikTok launches Security Checkup tool to help users keep their accounts protected BetaNews18 Mar
accounts 'Dead simple' hijacking hole in Apache Tomcat 'now actively exploited in the wild' TheRegister18 Mar
alerts Thousands of open source projects at risk from hack of GitHub Actions tool InfoWorld17 Mar
are GitHub supply chain attack spills secrets from 23,000 projects TheRegister17 Mar
over GitHub to unbundle Advanced Security InfoWorld12 Mar
hijacking Attackers can use undocumented commands to hijack Chinese-made Bluetooth chips BetaNews10 Mar
campaign Microsoft admits GitHub hosted malware that infected almost a million devices TheRegister10 Mar
targeted Microsoft discovers massive malvertising campaign on GitHub OS News 7 Mar
attempted Visual Studio Code 1.98 shines on GitHub Copilot InfoWorld 7 Mar
github Best password managers 2025: Protect your online accounts PC World 4 Mar
click-fix Infostealer malware stole 493 million accounts. Is yours one of them? PC World 4 Mar
attackers CPU-Z now alerts you about missing ROPs in RTX 50-series cards PC World 3 Mar
accounts Thousands of Exposed GitHub Repositories, Now Private, Can Still Be Accessed Through Copilot Slashdot27 Feb
alerts 30-year-old NHS supply chain system hit by 35 major alerts in 11 months TheRegister27 Feb
are Pixel Watch 3 Gets FDA Clearance For Loss of Pulse Alerts Slashdot27 Feb
over 200-plus impressively convincing GitHub repos are serving up malware TheRegister26 Feb
hijacking OpenAI Bans Chinese Accounts Using ChatGPT To Edit Code For Social Media Surveillance Slashdot22 Feb
campaign Malware-as-a-Service accounts for 57 percent of all threats BetaNews19 Feb
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Date Actuelle
mar. 18 mars - 18:01 CET