Fake Braintree NuGet Package Skims Credit Cards and Harvests Merchant Credentials Socket's AI scanner flagged a malicious NuGet package named Braintree.Net on July 3, 2026, which impersonates the official Braintree SDK to steal credit card data, merchant API keys, and host secrets. The package uses typosquatting, inflated download counts, and a multi-stage implant to exfiltrate data to attacker-controlled infrastructure. Socket reported the package to NuGet for removal. Socket’s AI scanner flagged a suspicious NuGet package masquerading as the official Braintree payment gateway client, with the first malicious version published on July 3, 2026. It was detected by Socket as potential malware 10 minutes after publication. Follow-on analysis by the Socket Threat Research team revealed a multi-stage .NET implant that intercepts live payment card data, exfiltrates Braintree merchant API keys and harvests host environment secrets upon assembly load. The package Braintree.Net copies the surface API of PayPal Braintree's legitimate Braintree SDK while routing stolen data to attacker-controlled infrastructure at api.348672-shakepay . com. The official Braintree .NET library is published on NuGet as Braintree currently in the 5.x line, maintained by PayPal/Braintree . The malicious package uses a common name variation — Braintree.Net — a mismatched version scheme 3.36.1 vs official 5.x , and metadata that points at the real braintree/braintree dotnet GitHub repository. Developers searching for "Braintree .NET" or copy-pasting a slightly wrong package name are the intended victims. We have reported this package to the NuGet security team and requested the removal of the package and the suspension of the publisher’s account. Additional context on the Braintree.Net's NuGet presence: Package ID:Braintree.Net official package ID is Braintree Claimed author:Braintree impersonation — official packages are published under the braintreepayments profile The malicious Braintree.Net blends in and ranks just after the legitimate package, partially due to inflated download count. Claimed project URL:https://github.com/braintree/braintree dotnet legitimate repo; this package is not built or distributed from it Companion dependency 3.36.0+ :DependencyInjector.Core ≥ 1.4.1 - a near-unused package whose primary downstream consumer is this typosquat This companion dependency contains a follow-on payload which functions as a token harvester. Faked Download Counts: Of Braintree.Net's ~14M reported downloads, roughly 11M is padding sprayed across 120 throwaway 0.0.x versions with published on a single day 2025-10-09, ~93,300 each . The genuinely malicious releases 3.35.8–3.36.1 have only ~334 real installs — a ~32,900x gap between the headline number and the real blast radius. The 120 empty placeholder versions 0.0.1 through 0.0.120 contained only a .nuspec and no DLL — a common namespace-squatting technique to occupy the package name and artificially increase the download count before dropping functional payloads: The malicious package ships real-looking Braintree.dll assemblies for multiple target frameworks net452, netstandard2.0, net8.0, net9.0, net10.0 . The public API surface — BraintreeGateway, CreditCardGateway, TransactionGateway, webhook types, GraphQL client wrappers — closely mirrors the legitimate SDK. A developer can instantiate a gateway, create customers, run transactions, and receive plausible Result