Attackers are increasingly abusing GitHub as a trusted malware delivery platform. By combining social engineering, malicious binaries, and fileless loaders, they are able to compromise users with minimal resistance.

A supply chain attack involving fake Claude Code npm packages, detailing how attackers abuse lifecycle scripts to achieve remote code execution and steal sensitive data.