Latest Privacy

Theregister

No REST for the wicked: Ruby gem hacked to siphon passwords, secrets from web devs

By Thomas Claburn 20 Aug 2019 at 22:08

An old version of a Ruby software package called rest-client that was modified and released about a week ago has been removed from the Ruby Gems repository – because it was found to be deliberately leaking victims' credentials to a remote server....

Read more