Author: Lawrence Abrams

News

Fake “Security Alert” issues on GitHub use OAuth app to hijack accounts

By Lawrence AbramsMarch 16, 2025

A widespread phishing campaign has targeted nearly 12,000 GitHub repositories with fake “Security Alert” issues, tricking developers into authorizing a malicious OAuth app that grants attackers full control over their accounts and code. “Security Alert: Unusual Access Attempt We have detected a login attempt on your GitHub account that appears to be from a new location or device,” reads the GitHub phishing issue. All of the GitHub phishing issues contain the same text, warning users that their was unusual activity on their account from Reykjavik, Iceland, and the 53.253.117.8 IP address. Fake “Security Alert” issue posted to GitHub repositoriesSource: BleepingComputer Cybersecurity…

News

Coinbase phishing email tricks users with fake wallet migration

By Lawrence AbramsMarch 15, 2025

A large-scale Coinbase phishing attack poses as a mandatory wallet migration, tricking recipients into setting up a new wallet with a pre-generated recovery phrase controlled by attackers. The emails have a subject of “Migrate to Coinbase Wallet” and state that all customers must transition to self-custodial wallets. The email also provides instructions on how to download the legitimate Coinbase Wallet. “As of March 14th, Coinbase is transitioning to self-custodial wallets. Following a class action lawsuit alleging unregistered securities and unlicensed operations, the court has mandated that users manage their own wallets,” reads the Coinbase phishing email. “Coinbase will operate as…

Gaming

Windows 10 KB5053606 update fixes broken SSH connections

By Lawrence AbramsMarch 12, 2025

Microsoft has released the KB5053606 cumulative update for Windows 10 22H2 and Windows 10 21H2, which fixes numerous bugs, including one preventing SSH connections. The Windows 10 KB5053606 update is mandatory as it contains Microsoft’s March 2025 Patch Tuesday security updates, which fix six actively exploited zero-day vulnerabilities. Windows users can install this update by going into Settings, clicking on Windows Update, and manually performing a ‘Check for Updates.’ However, as this update is mandatory, it will automatically start installing in Windows once you check for updates. To make this more manageable, you can schedule a time when your computer is restarted to finish the installation.…

What's Hot

Jay and Silent Bob: The Chronic Blunt Punch | PAX West 2024

iPhone 16e Review: A Semi-Flagship That Redefines “Budget”

On your Tail joins this week’s eShop roundup

Author: Lawrence Abrams

Fake “Security Alert” issues on GitHub use OAuth app to hijack accounts

Coinbase phishing email tricks users with fake wallet migration

Windows 10 KB5053606 update fixes broken SSH connections

Our Picks

Best Bass Earbuds in 2024

Kwalee accelerated development cycles and grew ARPDAU using Balancy’s LiveOps tools

Retroid says it will accept limited Pocket Mini returns due to screen scaling issue