RubyGems, the standard package manager for the Ruby programming language, has suspended account sign-ups following what it describes as a “large-scale malicious attack.”
“We are currently dealing with a large-scale malicious attack against Ruby Gems,” Maciej Mensfeld, senior product manager of software supply chain security at Mend.io, said in a post on X. “Sign-ups have been suspended for the time being. There are hundreds of packages involved, most targeting us, but some containing exploits.”
Visitors to the RubyGems sign-up page will see the message “New account registration is temporarily disabled.”
Mend.io, which is protecting RubyGems, said it would release further details once the incident is contained. It is currently unknown who is behind the attack.
The development comes amid a rise in software supply chain attacks targeting the open source ecosystem, with attackers like TeamPCP distributing malware that compromises widely used packages to collect sensitive data and steal credentials that can expand the attackers’ attack surface.
Google said in a report released Monday that credentials stolen from affected environments are being monetized through partnerships with ransomware and data theft groups.
(This is a developing story. Check back for more details.)
Source link
