The JFrog Security Research team regularly monitors open source software repositories using advanced automated tools, in order to detect malicious packages. In cases of potential supply chain security threats, our research team reports any malicious packages that were discovered to the repositoryโs maintainers in order to have them removed. This blog provides an analysis of โฆ
Analyzing Impala Stealer โ Payload of the first NuGet attack campaign In this blog post, weโll provide a detailed analysis of a malicious payload weโve dubbed โImpala Stealerโ, a custom crypto stealer which was used as the payload for the NuGet malicious packages campaign weโve exposed in our previous post. The sophisticated campaign targeted .NET โฆ
Update 2023-03-21 โ Weโve talked with members of the NuGet team and they had already detected and removed the malicious packages in question. Malicious packages are often spread by the open source NPM and PyPI package repositories, with few other repositories affected. Specifically โ there was no public evidence of severe malicious activity in the โฆ
