#gemstuffer — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #gemstuffer, aggregated by home.social.
-
GemStuffer Exploits RubyGems to Exfiltrate UK Council Data
Meet GemStuffer, a sneaky campaign that's hijacking the RubyGems registry to steal sensitive data, including information from a UK council, by hiding scraped content within seemingly harmless package files. Over 150 malicious gems have been used to store and exfiltrate this data, exposing it to anyone who knows where to look.
#Gemstuffer #Rubygems #DataExfiltration #PackageRegistry #SupplyChain