In a recent discovery, Socket’s Threat Research Team uncovered a sophisticated supply chain attack targeting ASP.NET developers. This attack, involving four malicious NuGet packages, is designed to exfiltrate sensitive login credentials and create persistent backdoors within affected applications. The campaign deploys a multi-stage payload, starting with the NCryptYo dropper, followed by the credential-harvesting packages DOMOAuth2_, […] The post NuGet Package Exploit Steals Login Credentials From ASP.NET Developers appeared first on Cyber Security News.