--- title: "Hackers Now Going After Software Tools Which Help Workers Collaborate | Phish Protection" description: "In business today we use software in almost everything we do. What’s proven to be especially useful is web-based software or software-as-a-service (SaaS)." image: "https://phishprotection.com/og/blog/hackers-now-going-after-software-tools-which-help-workers-collaborate.png" canonical: "https://phishprotection.com/blog/hackers-now-going-after-software-tools-which-help-workers-collaborate/" --- Quick Answer GitHub is a repository and version control tool which helps software teams develop software together. Slack is a communications portal built around "channels," which are groups of people with something in common. Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhackers-now-going-after-software-tools-which-help-workers-collaborate%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Hackers%20Now%20Going%20After%20Software%20Tools%20Which%20Help%20Workers%20Collaborate&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhackers-now-going-after-software-tools-which-help-workers-collaborate%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhackers-now-going-after-software-tools-which-help-workers-collaborate%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhackers-now-going-after-software-tools-which-help-workers-collaborate%2F&title=Hackers%20Now%20Going%20After%20Software%20Tools%20Which%20Help%20Workers%20Collaborate "Share on Reddit") [ ](mailto:?subject=Hackers%20Now%20Going%20After%20Software%20Tools%20Which%20Help%20Workers%20Collaborate&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fhackers-now-going-after-software-tools-which-help-workers-collaborate%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2020/04/what-is-a-zero-day-attack-4961.jpg) _In business today we use software in almost everything we do_. What’s proven to be especially useful is web-based software or software-as-a-service (SaaS). _It would be almost impossible to find someone in business who isn’t using at least some SaaS tools_. From email (Gmail) to communication (Skype) to file sharing (Dropbox), **SaaS tools** have become a staple of office productivity. _One particular category of SaaS tools is collaboration_. This is software that enables teams - especially remote teams like we have today - to work together on and communicate about projects. Two of the more popular SaaS collaboration tools are [GitHub](https://github.com/) and [Slack](https://slack.com/). GitHub is a repository and version control tool which helps software teams develop software together. Slack is a communications portal built around “channels,” which are groups of people with something in common. ![What is a zero day attack](https://media.mailhop.org/phishprotection/images/2020/04/what-is-a-zero-day-attack-4961.jpg) _Hackers are now targeting SaaS products in general and these two SaaS tools in particular with **phishing attacks**_. It’s somewhat surprising, since these tools are used by some of the most sophisticated technology people around and those most likely to sniff out a phishing attack. However, as organizations continue to adopt more cloud-based applications, [SaaS sprawl](https://nachonacho.com/free-saas-subscription-tracker) becomes a real concern, increasing the attack surface and making it harder for IT teams to monitor and secure every tool in use. In [the case of GitHub](https://www.bleepingcomputer.com/news/security/github-accounts-stolen-in-ongoing-phishing-attacks/), “_GitHub users are currently being targeted by a phishing campaign specifically designed to collect and steal their credentials via landing pages mimicking GitHub’s login page_. The **phishing emails** use various lures to trick targets into clicking the malicious link embedded in the messages: some say that unauthorized activity was detected, while others mention repository or settings changes to the targeted user’s account.” In [the case of Slack](https://cybersecurity.att.com/blogs/labs-research/slack-phishing-attacks-using-webhooks), “_Incoming webhooks allow you to post messages from your applications to Slack_. By specifying a unique URL, your message body, and a destination channel, you can send a message to any webhook that you know the URL for in any workspace, regardless of membership. Generally, Slack webhooks are considered a low risk integration. _A deeper dive into webhooks shows that this is not entirely accurate_.” So, hackers are using the **webhooks URLs to phish** unsuspecting users. “The process itself is fairly simple: - Discover leaked webhooks - Create a Slack app and allow public installation of the app - Send malicious messages to discovered hooks - Track workspaces that install the malicious app - Use the app to exfiltrate data from workspaces that install it” ![Phishing prevention](https://media.mailhop.org/phishprotection/images/2020/04/phishing-prevention-8546.jpg) _It just goes to show that hackers are not afraid to go after the most tech-savvy users out there with their phishing attacks._ And if the tech-savvy are vulnerable, what chance do normal folks have? That’s why the best approach, regardless of technical prowess, is to utilize another SaaS product to **protect employees** from phishing attacks: [Phish Protection](/). In the case of **Phish Protection**, being web-based is actually an advantage. _Since emails are first routed to the service, scanned and then forwarded if safe_, emails with malicious links never actually make it into the inbox. And if a phishing email can’t make it into the inbox, there’s no way it can be used to phish you. _Try Phish Protection free for 60 days_. It works with all software providers, _sets up in 10 minutes and only costs pennies per employee per month_. It’s perfect for cost-conscious small businesses. ## Topics [ Phishing ](/tags/phishing/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Foundational 5m 0ktapus, Okta Breach Helps Attackers Launch Sophisticated Supply Chain Attacks Sep 5, 2022 ](/blog/0ktapus-okta-breach-helps-attackers-launch-sophisticated-supply-chain-attacks/)[ Foundational 4m 13 Spear Phishing Attacks Examples To Justify Investment For Phishing Prevention Solutions In Your Organization Aug 1, 2019 ](/blog/13-spear-phishing-attacks-examples-to-justify-investment-for-phishing-prevention-solutions-in-your-organization/)[ Foundational 4m All 14 centers of Kettering Health were affected by a massive ransomware attack, Major outage in the Ohio medical center May 23, 2025 ](/blog/14-centers-of-kettering-health-were-affected-by-massive-ransomware-attack-in-ohio-medical-center/)[ Foundational 4m 2021 Phishing Trends You Need To Be Wary Of Aug 2, 2021 ](/blog/2021-phishing-trends-to-be-wary-of/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Hackers Now Going After Software Tools Which Help Workers Collaborate","description":"In business today we use software in almost everything we do. What’s proven to be especially useful is web-based software or software-as-a-service (SaaS).","url":"https://phishprotection.com/blog/hackers-now-going-after-software-tools-which-help-workers-collaborate/","datePublished":"2020-04-22T05:07:02.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2020-04-22T05:07:02.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/hackers-now-going-after-software-tools-which-help-workers-collaborate/"},"articleSection":"foundational","keywords":"Phishing","wordCount":566,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2020/04/what-is-a-zero-day-attack-4961.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://phishprotection.com/foundational/"},{"@type":"ListItem","position":4,"name":"Hackers Now Going After Software Tools Which Help Workers Collaborate","item":"https://phishprotection.com/blog/hackers-now-going-after-software-tools-which-help-workers-collaborate/"}]} ```