This report analyzes a targeted phishing campaign that successfully bypassed email security filters such as SPF, DKIM, and DMARC by exploiting GitHub’s legitimate notification infrastructure and Google’s sharing links.
As AI automation solutions like OpenClaw remain popular, threat actors are targeting developers who follow popular open-source projects like OpenClaw, aiming to empty their Web3 wallets with promises of fraudulent Airdrops.