An old version of a Ruby software package called that was modified and released about a week ago has been removed from the Ruby Gems repository – because it was found to be deliberately leaking victims’ credentials to a remote server. Jussi Koljonen, a developer with Visma in Helsinki, Finland, discovered the hacked code in , and opened an issue to discuss the matter on the GitHub repo for the software.

Read full article on The Register