Read the original article at https://blog.knowbe4.com/phony-captcha-pages-target-github
A phishing campaign is targeting GitHub users with phony CAPTCHA pages, according to researchers at McAfee. The phishing emails ask users to address a security vulnerability in a GitHub repository that they recently contributed to, and contain a link to find more information about the alleged vulnerability. This link leads to a fake CAPTCHA page that attempts to trick them into installing malware.
Read the original article at https://blog.knowbe4.com/phony-captcha-pages-target-github