Be on your guard if you\u2019re a developer who uses GitHub \u2013 someone could be trying to infect your computer with malware.<\/p>\n
Reports have emerged that malicious hackers are attempting to infect open source programmers\u2019 computers with a Trojan horse, by launching a targeted malware campaign via email against GitHub developers.<\/p>\n
The attack, which was first noticed in January<\/a>, typically arrives in the form of a flattering email offering programming work:<\/p>\n Hey. I found your software is online. Can you write the code for my project? Terms of reference attached below. Other, more recent sightings, have seen the attackers be a little less curt in their approach:<\/p>\n Hello,<\/p>\n My name is Adam Buchbinder, I saw your GitHub repo and i\u2019m pretty amazed. The point is that i have an open position in my company and looks like you are a good fit.<\/p>\n Please take a look into attachment to find details about company and job. Dont hesitate to contact me directly via email highlighted in the document below.<\/p>\n Thanks and regards, Hungry programmers, keen to keep themselves in a steady supply of pizza and Jolt cola, and flattered by the praise, may find it only too tempting to click on the poisoned attachment in the belief that they are being offered some genuine work.<\/p>\n The attached file, which is in an archive format, has been seen to contain a boobytrapped Word document designed to install further malicious code onto its victim\u2019s PC.<\/p>\n
\nThe price shall discuss, if you can make. Answer please.<\/p><\/blockquote>\n
\nAdam.<\/p><\/blockquote>\n