How to Mine for Malicious Ruby Gems
Typosquatting in software repositories is still an effective way to spread malware. ReversingLabs threat research team recently found over 760 malicious Ruby packages in the RubyGems package manager that are successfully infecting software source code allowing commercial applications to be shipped with malware.
On May 5th at 12:00pm EST we will be hosting a "How To" webinar where we will discuss the implications of this attack on the software development lifecycle, the risks to end users, and how to build security into your process.
For more information on how attackers are using open source software repositories to spread malware you can read our blog post: Mining for Malicious Ruby Gems