Phishing Attack on CPAN Authors
Sun, 03-Jan-2021 by
We've been alerted to a phishing attack against CPAN authors. The image below shows what it looks like.
One way you can protect yourself against such attacks is by [configuring a secret email address for your PAUSE account](https://pause.cpan.org/pause/authenquery?ACTION=edit_cred). This address will be used for all contacts from the PAUSE/CPAN system, but will never be shared publicly.
If you've clicked on the link and entered any credentials, you should change the relevant password immediately. If you entered your PAUSE credentials, please check your recent uploads for any suspicious new packages. The easiest way to check this is through your MetaCPAN author releases page, like [metacpan.org/author/DROLSKY/releases](https://metacpan.org/author/DROLSKY/releases). If you find something suspicious, please download a copy, delete it from PAUSE, and alert [firstname.lastname@example.org](mailto:email@example.com).