Posts by

Alexis Wales

Security alert: social engineering campaign targets technology industry employees

GitHub has identified a low-volume social engineering campaign that targets the personal accounts of employees of technology firms. No GitHub or npm systems were compromised in this campaign. We’re publishing this blog post as a warning for our customers to prevent exploitation by this threat actor.

July 18, 2023

Security

Action needed for GitHub Desktop and Atom users

Update to the latest version of Desktop and previous version of Atom before February 2.

January 30, 2023

Security

Security alert: new phishing campaign targets GitHub users

On September 16, GitHub Security learned that threat actors were targeting GitHub users with a phishing campaign by impersonating CircleCI to harvest user credentials and two-factor codes. While GitHub itself was not affected, the campaign has impacted many victim organizations.

September 21, 2022

Alexis Wales

Security alert: social engineering campaign targets technology industry employees

Action needed for GitHub Desktop and Atom users

Security alert: new phishing campaign targets GitHub users

Subscribe to The GitHub Insider