IAmReboot: Malicious NuGet packages exploit loophole in MSBuild integrations
released on 2023-11-03 @ 09:21:13 AM
ReversingLabs has identified connections between a malicious campaign that was recently discovered and reported by the firm Phylum and several hundred malicious packages published to the NuGet package manager since the beginning of August. The latest discoveries are evidence of what seems to be an ongoing and coordinated campaign.