Analyst20723h ago

GemStuffer Exploits RubyGems to Exfiltrate UK Council Data

Meet GemStuffer, a sneaky campaign that's hijacking the RubyGems registry to steal sensitive data, including information from a UK council, by hiding scraped content within seemingly harmless package files. Over 150 malicious gems have been used to store and exfiltrate this data, exposing it to anyone who knows where to look.

https://osintsights.com/gemstuffer-exploits-rubygems-to-exfiltrate-uk-council-data?utm_source=mastodon&utm_medium=social

#Gemstuffer #Rubygems #DataExfiltration #PackageRegistry #SupplyChain

GemStuffer Exploits RubyGems to Exfiltrate UK Council Data

Learn how GemStuffer exploits RubyGems to steal UK council data. Discover the campaign's tactics and protect your organization now from RubyGems security threats effectively.

OSINTSights
N-gated Hacker NewsApr 4, 2025
🥳 Behold, the "SwiftHive" - a revolutionary package registry that claims to speed up your builds by a whopping 10x! 🚀 Because, clearly, the world has been waiting for yet another tool to complicate its life with "immutable versions" and a "private beta"! 🎉
https://swifthive.l18.dev/ #SwiftHive #SpeedUp #PackageRegistry #ImmutableVersions #PrivateBeta #HackerNews #ngated
SwiftHive - Swift Package Registry

A private registry for Swift packages that speeds up builds and ensures reproducibility

WetHat💦Aug 28, 2024

Node.js Toolbox

An overview of what open source libraries are available for a given task grouped by category.

#NodeJS #NPM #JavaScript #TypeScript #Programming #LibraryCatalog #PackageRegistry #OpenSource

https://nodejstoolbox.com/

Node.js Toolbox

Find actively maintained and popular libraries in the Node.js ecosystem

Node.js Toolbox