Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets
News Source : Internet

News Summary

  • A malicious NuGet package that masquerades as a C# software development kit for Sicoob can siphon client IDs and PFX certificates.
  • The package is estimated to have been downloaded nearly 500 times.
  • The development coincides with the discovery of 14 malicious npm packages that typosquat well-known OpenSearch, ElasticSearch, DevOps, and environment-configuration libraries.
  • The packages were published by a single threat actor named "vpmdhaj" ("[email protected]") on May 28, 2026.

Must read Articles

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

The Literary Film &TV You Need to Stream in June

News Source : By Emily Temple from Lithub.com

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Download movies and shows in 4K and watch them anywhere, adfree $95.99 with no subscription

News Source : By DealPost Team from PCWorld

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Activision has filed a new Crash Bandicoot trademark, and it points to movies, TV, and animation but not games

News Source : By Adam Hales from Windows Central

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

People Share 44 TV & Film Clichs That Work In Fiction But Flop In Real Life

News Source : By Asli Akalin from Boredpanda.com

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

The Match Factory Locks Distribution Deals On Cannes Titles Fatherland, Coward, The Dreamed Adventure & Teenage Sex And Death At Camp Miasma

News Source : By Zac Ntim from Deadline

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Original Amores Perros Screenplay Being Adapted As TV Series From AF Films & Sofia Vergaras LatinWe

News Source : By Jesse Whittock from Deadline

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

50 People From Different Generations Share Their Most Boomer Takes

News Source : By Asli Akalin from Boredpanda.com

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Bla Fleck and Rene Fleming join forces to celebrate Appalachian music on new album

News Source : By Michel Martin from NPR

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Return of the Jungle movie review A light, entertaining film for the little ones

News Source : By Shubhra Gupta from The Indian Express

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Hacks Finale Ending Explained Every Characters Fate Revealed (SpoilerFilled Recap)

News Source : By David Niederhoffer from Just Jared

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Out now new Boards of Canada album. Get it wherever you...

News Source : By Jason Kottke from kottke.org

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Bret Michaels Drops Out Of TrumpBacked Freedom 250Concert Series In D.C.

News Source : By Tomt from Deadline

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

How to Watch the Original Backrooms YouTube Video Before Seeing the New Movie

News Source : By Maddy Lennon from Just Jared

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Is There a Backrooms (2026) End Credits Scene? If You Should Stay or Not After the Movie

News Source : By David Niederhoffer from Just Jared

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

John Travoltas directorial debut is now available to stream on Apple TV

News Source : By Marcus Mendes from 9to5Mac

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Former Chinese train driver makes AI short film for Rs 42,000, gets job offer from Hollywood

News Source : By Trends Desk from The Indian Express

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Senegal deny World Cup travel delay is due to coach dispute

News Source : By Al Jazeera from Al Jazeera English

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Summer Houses West Wilson Reveals He Recently Filmed 3 Hour Conversation with Kyle Cooke

News Source : By AJ Pitts from Just Jared

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Martina McBride, Young MC & More Acts Drop Out of Freedom 250 Great American State Fair Concert Series

News Source : By AJ Pitts from Just Jared

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

AIGenerated Film About Iranian Protest Violence Heads to Tribeca Film Festival

News Source : By Aaron Pruner from CNET

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Ugandans, Congolese and South Sudanese in Canada got visas suspended in wake of ebola travel restrictions

News Source : By from CBC News

News image for article Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

GayTorrents Vanishes After Lawsuit, FlavaWorks Narrows Case from 325 to 39 Users

News Source : By Ernesto Van der Sar from Torrentfreak.com