Using v3.2.3 I saw the phishing popup yesterday from one of the rogue servers when i tried to do a tx. I'm sorry I forgot to screenshot, but it wasn't a github url. It was electrumsomething.com. Probably github kicked the phishers out and they registered another more "innocuous looking" url... .
Thanks for the report...
Can confirm that "electrumd o w n l o a d.com"
(DO NOT VISIT - SCAM URL!) is a phishing URL... with version "4.0.0" available for download...
Chrome initially warned that the website was unsafe... After manually "proceeding" to the website, I attempted to download it onto the sandboxed VM... and Windows Defender detected a trojan (Trojan:Win32/Spursint.F!cl) and removed the download. After manually allowing it... I tried to GPG check the file and got "gpg: Can't check signature: No public key"
Be safe out there!