May 14
GemStuffer Turns RubyGems Into Government Data Exfiltration Pipeline
A malicious RubyGems campaign published over 155 packages that scraped UK local government portals and exfiltrated civic data through repackaged .gem archives. Ruby Central was forced to disable new account registrations and throttle platform activity after attackers used hardcoded API tokens to automate large-scale package publishing.
Source: Socket
Read more: CyberSecBrief