cognitive cybersecurity intelligence

News and Analysis

Malicious NuGet packages abuse MSBuild to install malware

A new typosquatting campaign using the open-source package manager, NuGet, has been identified as potentially infecting Windows systems with malware. Packages employed in the campaign use MSBuild integration to run codes in a stealthy manner. Though this feature enhances the building and packaging process for software projects, it opens up a new vulnerability for script execution during a package’s installation. This is the first documented instance of threat actors exploiting this feature in NuGet packages.

Source: www.bleepingcomputer.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

News and Analysis

Malicious NuGet packages abuse MSBuild to install malware

Subscribe to newsletter

More Posts

Kaspersky Focuses On Securing Large Language Models With New Course

Bridgestone America recovers network connectivity following cyber attack – cybersecurityconnect.com.au

Pixie Dust Wi-Fi Attack Exploits Routers WPS to Obtain PIN and Connect With Wireless Network

Raven Stealer Targets Google Chrome Users to Exfiltrate Sensitive Data – gbhackers.com

Products

Solutions

Healthcare cybersecurity

Healthcare Threat Intelligence

Use Cases

News and Analysis

Insights

Company