Cryptocurrency Developers Targeted by NuGet Supply Chain Attack

Cyber Security News by CyberSum.net

Published on October 24, 2025 at 12:00 PM

3 sources

Socket’s Threat Research Team discovered a sophisticated supply chain attack on the NuGet package registry targeting cryptocurrency developers. The malicious package, Netherеum.All, used a homoglyph attack to impersonate the legitimate Nethereum library, exfiltrating sensitive wallet data. The attack exploited NuGet’s permissive Unicode naming rules, which allow non-ASCII characters. Developers are advised to verify package authenticity and implement stricter dependency hygiene practices.

Also Read

Kimsuky Group Deploys HttpTroy Backdoor in Spear-Phishing Attack

The Kimsuky threat actor has been linked to a spear-phishing attack using a new backdoor called HttpTroy. The attack involved a ZIP file disguised as a VPN invoice, which initiated a multi-stage infection process. The backdoor allows attackers to control compromised systems, execute commands, and capture screenshots. The malware employs advanced obfuscation techniques to evade detection.

By Cyber Security News by CyberSum.netNovember 3, 2025 at 03:00 PM