NuGet in the Media
7 mentions across press, blogs, and newsletters
February 2026
Socket.dev
Malicious Go “crypto” Module Steals Passwords and Deploys Rekoobe Backdoor
An impersonated golang.org/x/crypto clone exfiltrates passwords, executes a remote shell stager, and delivers a Rekoobe backdoor on Linux.
Feb 26, 2026
Infosecurity Magazine
Malicious NuGet Package Targets Stripe Developers
Malicious NuGet package mimicking Stripe's library targeted developers
Feb 25, 2026
The Hacker News
Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware
Cybersecurity researchers have discovered four malicious NuGet packages that are designed to target ASP.NET web application developers to steal sensitive data. The campaign, discovered by Socket, exfiltrates ASP.NET Identity data, including user accounts, role assignments, and permission mappings, a
Feb 25, 2026
GBHackers
Malicious NuGet Packages Target ASP.NET Developers to Steal Login Credentials
Malicious NuGet packages posing as legitimate developer utilities are targeting ASP.NET projects to steal identity credentials and silently backdoor applications through a localhost proxy. All four were published between August 12–21, 2024, by a NuGet user named “hamzazaheer” and have collectivel
Feb 24, 2026
Socket.dev
Four Malicious NuGet Packages Target ASP.NET Developers With JIT Hooking and Credential Exfiltration
Socket uncovered four malicious NuGet packages targeting ASP.NET apps, using a typosquatted dropper and localhost proxy to steal Identity data and backdoor apps.
Feb 23, 2026
Andrew Nesbitt
Package Management Namespaces
Comparing namespace models across npm, Maven, Go, Swift, and crates.io.
Feb 14, 2026
Neowin
Visual Studio 2026 18.3.0 brings GitHub Copilot memories and AI-powered vulnerability fixes
You can boost your productivity with AI-tailored coding standards and 25% more screen space via Insignificant Line Compression in the
Feb 11, 2026