CRITICALAdvisoryJul 11, 2026
Action required
Immediately audit your .NET dependency manifests (packages.config, .csproj) for Braintree.Net package. If found, assume breach: isolate affected systems, revoke all Braintree merchant API keys, rotate secrets/credentials, monitor associated payment processor accounts for fraud, and notify downstream customers. Hunt for api.348672-shakepay[.]com DNS/HTTP traffic and child processes spawned by dotnet.exe or csc.exe.
Affected products
PayPalBraintreeBraintree.NetDependencyInjector.CoreSipNet