Social Engineering Acquisition Fraud

discovered 2026-07-03

Approaching open source maintainers with a fabricated acquisition proposal from a legitimate-looking company. The maintainer voluntarily transfers ownership after due diligence. Distinct from credential theft, phishing, or account recovery abuse.

Seen in packages

Campaigns