Skip to content

Scammers use GitHub to defraud other cybercriminals.



Cybersecurity researchers have found a number of GitHub accounts promoting faux proof-of-work idea exploits for the newest zero-day vulnerabilities found in Microsoft Trade.

The warning follows the invention of two new zero-day vulnerabilities in Microsoft Trade: CVE-2022-41040 and CVE-2022-41082. These are a server-side request forgery (SSRF) flaw, and distant code execution (RCE) flaw, with each stated to be being utilized by risk actors within the wild.