https://cybercrime.club/tags/nuget/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usSat, 30 May 2026 11:09:13 -0400https://cybercrime.club/posts/sicoob-sdk-nuget-pfx-certificate-theft-sentry-exfil/Sat, 30 May 2026 11:09:13 -0400https://cybercrime.club/posts/sicoob-sdk-nuget-pfx-certificate-theft-sentry-exfil/A trojanized NuGet package posing as the official Sicoob C# SDK reads PFX certificates off disk and ships them, plus the password, to an attacker-controlled Sentry endpoint — abusing a trusted telemetry service as its exfiltration channel.Supply Chain