malicious packages Archives

Analyzing Impala Stealer – Payload of the first NuGet attack campaign

April 10, 2023

Analyzing Impala Stealer – Payload of the first NuGet attack campaign In this blog post, we’ll provide a detailed analysis of a malicious payload we’ve dubbed “Impala Stealer”, a custom crypto stealer which was used as the payload for the NuGet malicious packages campaign we’ve exposed in our previous post. The sophisticated campaign targeted .NET …

Attackers are starting to target .NET developers with malicious-code NuGet packages

March 20, 2023

Update 2023-03-21 – We’ve talked with members of the NuGet team and they had already detected and removed the malicious packages in question. Malicious packages are often spread by the open source NPM and PyPI package repositories, with few other repositories affected. Specifically – there was no public evidence of severe malicious activity in the …

Analyzing Impala Stealer – Payload of the first NuGet attack campaign

Attackers are starting to target .NET developers with malicious-code NuGet packages

Popular Tags