
Introduction Cybersecurity professionals have long relied on the inherent trustworthiness of established development platforms like GitHub and Jira, yet this very confidence is now being weaponized against them through a sophisticated technique known as Platform-as-a-Proxy. This emerging threat shifts the paradigm of phishing by utilizing the legitimate infrastructure of Software-as-a-Service providers to deliver deceptive messages. Instead of creating fake domains,










