Credential theft facilitated by dozens of malicious RubyGems packages

Threat actors have been pilfering developers’ credentials using 60 nefarious RubyGems packages impersonating automation tools for various social media sites, including Instagram, X, TikTok, WordPress, Naver, and Telegram, which have amassed more than 275,000 downloads since March 2023, according to BleepingComputer.SCM feed for Endpoint/Device SecurityRead More