SECURITYDARK READING
Attackers Weaponize RubyGems for Data Dead Drops
Threat actors are publishing malicious RubyGems packages that target public-facing UK government servers with scrapers, but their objective is unclear. The attackers are using RubyGems to potentially gather data or disrupt services. This incident highlights a new security risk for government agencies.