glibg10b@lemmy.zip to

Open Source@lemmy.mlEnglish · 3 days ago

New scam on GitHub

83

New scam on GitHub

glibg10b@lemmy.zip to

Open Source@lemmy.mlEnglish · 3 days ago

These scammers copy the text from new issues verbatim, and paste them in a new issue in a “support” repo. They tag the original author so they get notified.

They then use GitHub Actions to reply with a phishing link and email.

This particular repo has been up for a week and has done this to 113 people.

The link leads to a page that impersonates GitHub support. Every link on that page leads to a crypto scam.

If you stumble across such a repository, please report it. You can report this one here.

Chat

glibg10b@lemmy.zipOP
link
fedilink
arrow-up
9·
3 days ago
GitHub’s reporting functions are limited. For example, it’s not possible to report the issue or the reply from GitHub Actions. And the form for reporting the whole repository is somewhat broken and annoying to use

Open Source@lemmy.ml

opensource@lemmy.ml

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !opensource@lemmy.ml

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Posts must be relevant to the open source ideology
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

490 users / day
1.86K users / week
4.36K users / month
11.2K users / 6 months
1 local subscriber
45.3K subscribers
1.27K Posts
15.8K Comments
Modlog