Ruby Central in 'real financial jeopardy' following RubyGems maintainer ruckus

Ruby Central, a nonprofit that supports the Ruby programming language ecosystem, in is "real financial jeopardy," according to a missive from its board members. Among other cost-cutting measures, it ...
Dark Reading

60 RubyGems Packages Steal Data From Annoying Spammers

For two years now, a Korean threat actor has been publishing malicious open source software (OSS) packages designed to steal credentials from spam marketers. Are you tired of shady, throwaway online ...
Bleeping Computer

Malicious RubyGems pose as Fastlane to steal Telegram API data

Two malicious RubyGems packages posing as popular Fastlane CI/CD plugins redirect Telegram API requests to attacker-controlled servers to intercept and steal data. RubyGems is the official package ...