A new typosquatting campaign using the open-source package manager, NuGet, has been identified as potentially infecting Windows systems with malware. Packages employed in the campaign use MSBuild integration to run codes in a stealthy manner. Though this feature enhances the building and packaging process for software projects, it opens up a new vulnerability for script execution during a package’s installation. This is the first documented instance of threat actors exploiting this feature in NuGet packages.

47% of Manufacturing Breaches in 2024 Involved Ransomware
Summarize this content to a maximum of 60 words: KnowBe4 released its new report highlighting cybersecurity challenges facing the manufacturing industry.