These fake GitHub "security alerts" could actually let hackers hijack your account
SMRTR summary
The phishing campaign deceives GitHub users with fake security alerts, leading them to grant permissions to a malicious OAuth app, potentially compromising at least 8,000 repositories and granting extensive access to users' accounts and data.
SMRTR provides this summary for quick context. The original article belongs to TechRadar.
Read the original article