Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware
Asset Info
CreatorN/A
Registration TimeLoading...
RegistrarThe Hacker News
Capture TimeLoading...
GeolocationN/A
File TypeJPEG
Source TypedigitalUpload
Details
Abstract
Cybersecurity researchers have discovered four malicious NuGet packages that are designed to target ASP.NET web application developers to steal sensitive data.
The campaign, discovered by Socket, exfiltrates ASP.NET Identity data, including user accounts, role assignments, and permission mappings, as well as manipulates authorization rules to create persistent backdoors in victim applications.
LicenseN/A
Used Bythehackernews.com...
Mining PreferenceN/A
Integrity Proof