RubyGems pauses new account sign-ups amid major malicious attack

Per The Hacker News. RubyGems, the primary package manager for the Ruby programming language, has temporarily halted new account registrations due to a significant malicious attack impacting its platform.

The attack has led to the involvement of hundreds of packages, with many directly targeted and some containing exploits. While the full scope and perpetrators remain unknown, the incident highlights a growing trend of software supply chain attacks against open-source ecosystems. Visitors attempting to sign up for new accounts on RubyGems.org are currently met with a message indicating that registration has been temporarily disabled. Mend.io, a company involved in securing RubyGems, stated that more details will be released once the situation is under control.

This event occurs amidst an increase in such attacks, where threat actors compromise widely used packages to distribute malware, including credential-stealing variants. Stolen credentials are often monetized through partnerships with ransomware and data extortion groups, underscoring the broader implications for software security and data integrity within the developer community.

Source: The Hacker News