From gbhackers.com
![GitHub Service](https://i1.wp.com/gbhackers.com/wp-content/uploads/2019/04/GitHub-Service1.png?resize=696%2C363&ssl=1)
Hackers abuse popular code repositories service such as GitHub to host a variety of phishing domains to make their targets to believe it is through github.io domains.
By using well-known services like Dropbox, Google Drive, Paypal, eBay, and Facebook, attackers able to bypass whitelists and network defenses.
Proofpoint identified a range of malicious activities that target users from various organizations. Here is the Example of a phishing kit hosted on GitHub service that lures the login credentials of a retail bank.