RubyGems typosquatting attack hits Ruby developers with trojanized packages

Over 700 malicious packages with names similar to legitimate ones have been uploaded to RubyGems, a popular repository of third-party components for the Ruby programming language. The upload took place over the course of a week in February, researchers report. The rogue packages contained a malicious script that, when executed on Windows computers, hijacked cryptocurrency transactions by replacing the recipient’s wallet address with one controlled by the attacker.

Story added 16. April 2020, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

Spam-blasting malware infects thousands of Linux and FreeBSD servers
Cybersecurity Ghosts of Past, Present, and Future
Two Dozen Arrested for Laundering Funds From BEC, Other Scams
LA sues The Weather Channel over selling users’ location data
Iranian Group Targeting Israeli Shipping and Other Key Sectors
Computer Security Circa 1990
Resolved: Penn State Worthington Scranton: Scheduled circuit maintenance
Chrome, Firefox Updates Patch Serious Vulnerabilities
Attackers target OWA for domain credentials
2FA Bypass Vulnerability Patched in cPanel & WebHost Manager

RubyGems typosquatting attack hits Ruby developers with trojanized packages

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts