A phishing email campaign targeting open-source developers who use GitHub has been discovered by cyber-security firm Palo Alto. The threat was discovered in mid of January this year when it was targeting multiple owners of Github repositories via phishing emails. The attack starts by spamming the email inboxes of active GitHub users with booby-trapped job offers. The messages attempt to trick the victims into running an attached malicious.doc file. The doc file contains embedded macro code, which if allowed, executes a. PowerShell command to download and install the Dimnie trojan.
Source: https://thehackernews.com/2017/03/github-email-scam.html