An active social engineering campaign targeting open source developers via Slack has been reported. Attackers impersonate trusted community leaders, distribute phishing links mimicking Google Workspace authentication flows, and deliver malware through certificate spoofing and malicious binaries. The attack involves credential harvesting, fake certificate installation, and system compromise via executed binaries.
