Cybersecurity researchers are calling attention to a new campaign dubbed GemStuffer that has targeted the RubyGems repository with more than 150 gems that use the registry as a data exfiltration channel rather than for malware distribution.
“The packages do not appear designed for mass developer compromise,” Socket said. “Many have little or no download activity, and the payloads are repetitive,
SOURCE:
Google on Tuesday unveiled a new opt-in Android feature called Intrusion Logging for storing forensic logs to better analyze sophisticated
Exim has released security updates to address a severe security issue affecting certain configurations that could enable memory corruption and
RubyGems, the standard package manager for the Ruby programming language, has temporarily paused account sign ups following what has been