Braintree NuGet Typosquat Uses XOR-Obfuscated C2 to Hide Environment Secret Theft
A malicious NuGet package impersonating the Braintree .NET payment library has put production payment systems at risk. The package can collect live card details during transactions, then send the data away without alerting the application or its users. It also seeks credentials that could give...