A large-scale phishing campaign is currently targeting developers directly within GitHub by distributing fake Visual Studio Code security alerts. Attackers are exploiting GitHub Discussions to post fabricated vulnerability warnings, aiming to trick users into downloading malicious software. By tagging large numbers of developers and relying on GitHub’s built-in email notification system, the threat actors successfully […] The post Phishing Attack Pushes Malware Using Fake VS Code Alerts On GitHub appeared first on Cyber Security News.