■■■□□ Malicious code on GitHub: How hackers target programmers.
Kaspersky discovered over 200 repositories with fake projects on GitHub. Using them, attackers distribute stealers, clippers, and backdoors.
https://www.kaspersky.com/blog/malicious-code-in-github/53085/