Hey everyone,
There’s a new warning out for macOS users: attackers are creating fake GitHub repositories that impersonate popular tools like 1Password, Basecamp, Dropbox, Hootsuite, Notion and others. When a victim downloads from one of these fraudulent repos, they’re redirected to a malicious site that drops the Atomic infostealer onto their system. The campaign relies on SEO poisoning to push these bogus GitHub links to the top of search results, tricking users into thinking they’re legitimate.
If you use open‑source tools or download software from GitHub, how do you make sure you’re getting the real thing? Have you come across any suspicious repositories or search results lately?
There’s a new warning out for macOS users: attackers are creating fake GitHub repositories that impersonate popular tools like 1Password, Basecamp, Dropbox, Hootsuite, Notion and others. When a victim downloads from one of these fraudulent repos, they’re redirected to a malicious site that drops the Atomic infostealer onto their system. The campaign relies on SEO poisoning to push these bogus GitHub links to the top of search results, tricking users into thinking they’re legitimate.
If you use open‑source tools or download software from GitHub, how do you make sure you’re getting the real thing? Have you come across any suspicious repositories or search results lately?