Ruby Central report reopens wounds over RubyGems repo takeover

Ruby Central, a nonprofit that supports the Ruby programming language ecosystem, just published an incident report regarding ...
Bleeping Computer

Malicious RubyGems pose as Fastlane to steal Telegram API data

Two malicious RubyGems packages posing as popular Fastlane CI/CD plugins redirect Telegram API requests to attacker-controlled servers to intercept and steal data. RubyGems is the official package ...