A new NuGet typosquatting campaign pushes malicious packages that abuse Visual Studio's MSBuild integration to execute code and install malware stealthily.

Attackers are exploiting for the first time a known security risk in a popular MSBuild feature to place hard-to-detect malicious files in the .NET repository.

Nuget will happily keep separate packages for different versions of a particular Nuget package (seeing as how the package name includes the version number it's actually automatic).

In-Depth How To Set Up an Internal NuGet Repository in PowerShell Here's a simple way for an organization to stay in control of an ever-growing library of resources. By Adam Bertram 12/23/2016 ...

Threat actors are targeting and infecting .NET developers with cryptocurrency stealers delivered through the NuGet repository and impersonating multiple legitimate packages via typosquatting.

If you read Peter's article on how easy it is to use NuGet to share project components, then you won't be surprised to find out that setting up a NuGet Web site is equally easy.

News NuGet Package Restore Workaround By Katrina Carrasco 06/18/2013 Microsoft responded to developer reports that two Microsoft package files, Microsoft.Bcl.Build and Microsoft.Bcl.Compression, have ...