Crypto Opinions & News Rogue NuGet Packages Infect .NET Developers with Crypto-Stealing Malware

Disclaimer: Any information contained on this forum is provided as general market commentary, and does not constitute investment, financial, trading or other sort of advice.

MuzzMelbourne

MuzzMelbourne

Level 15
Thread author
Verified
Top Poster
Well-known
Mar 13, 2022
599
Content source
https://thehackernews.com/2023/03/rogue-nuget-packages-infect-net.html
The NuGet repository is the target of a new "sophisticated and highly-malicious attack" aiming to infect .NET developer systems with cryptocurrency stealer malware.

The 13 rogue packages, which were downloaded more than 160,000 times over the past month, have since been taken down.

"The packages contained a PowerShell script that would execute upon installation and trigger a download of a 'second stage' payload, which could be remotely executed," JFrog researchers Natan Nehorai and Brian Moussalli said.

While NuGet packages have been in the past found to contain vulnerabilities and be abused to propagate phishing links, the development marks the first-ever discovery of packages with malicious code.
Click to expand...
thehackernews.com

Rogue NuGet Packages Infect .NET Developers with Crypto-Stealing Malware

NuGet Repository under attack! New malicious campaign aims to infect #DotNET developer systems with cryptocurrency stealer malware.
thehackernews.com thehackernews.com
 
  • +Reputation
Reactions: Gandalf_The_Grey

Similar threads

[correlate]
    • Like
    • Thanks
Malware News 116 Malware Packages Found on PyPI Repository Infecting Windows and Linux Systems
Replies
0
Views
926
Security News
[correlate]
[correlate]
silversurfer
    • Like
    • +Reputation
Malicious PyPI Packages Using Cloudflare Tunnels to Sneak Through Firewalls
Replies
0
Views
518
News Archive
silversurfer
silversurfer
silversurfer
    • Like
    • +Reputation
    • Thanks
Hackers use fake crypto job offers to push info-stealing malware
Replies
0
Views
415
News Archive
silversurfer
silversurfer

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top