A researcher has uncovered malicious packages in the RubyGems repository, one of which was downloaded more than 2,000 times. RubyGems, the standard package manager for Ruby, was studied by threat analyst Tomislav Maljic at ReversingLabs, who highlighted research based on analysing packages submitted to the repository that have similar names to existing popular gems – possible cases of “typosquatting,”
Read full article on The Register