Blog Home

Analyzing Impala Stealer – Payload of the first NuGet attack campaign
April 10, 2023

Analyzing Impala Stealer – Payload of the first NuGet attack campaign In this blog post, we’ll provide a detailed analysis of a malicious payload we’ve dubbed “Impala Stealer”, a custom crypto stealer which was used as the payload for the NuGet malicious packages campaign we’ve exposed in our previous post. The sophisticated campaign targeted .NET …

Read More
Malicious Packages NuGet

Attackers are starting to target .NET developers with malicious-code NuGet packages
March 20, 2023

Update 2023-03-21 – We’ve talked with members of the NuGet team and they had already detected and removed the malicious packages in question. Malicious packages are often spread by the open source NPM and PyPI package repositories, with few other repositories affected. Specifically – there was no public evidence of severe malicious activity in the …

Read More

Popular Tags