RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded

Blog

Byadmblake May 12, 2026

RubyGems, the standard package manager for the Ruby programming language, has temporarily paused account sign ups following what has been described as a “major malicious attack.” “We’re dealing with a major malicious attack on Ruby Gems right now,” Maciej Mensfeld, senior product manager for software supply chain security at Mend.io, said in a post on…

RubyGems, the standard package manager for the Ruby programming language, has temporarily paused account sign ups following what has been described as a “major malicious attack.”
“We’re dealing with a major malicious attack on Ruby Gems right now,” Maciej Mensfeld, senior product manager for software supply chain security at Mend.io, said in a post on X. “Signups are paused for the time being.

Blog

Not Toying Around: Hasbro Attack May Take ‘Weeks’ to Remediate

The company’s 8-K filing notes “unauthorized access” and that it’s activated business continuity plans and taken some systems offline.

Read More Not Toying Around: Hasbro Attack May Take ‘Weeks’ to Remediate
Blog

Africa Relinquishes Cyberattack Lead to Latin America — For Now

The volume of cyberattacks targeting Africa declined in the past year, with weekly attacks down 22%, as attackers seemingly shifted their focus to other regions.

Read More Africa Relinquishes Cyberattack Lead to Latin America — For Now
Blog

LINE Messaging Bugs Open Asian Users to Cyber Espionage

In a potential gift to geopolitical adversaries, the encrypted messaging app uses a leaky custom protocol that allows message replays, impersonation attacks, and sensitive information exposure from chats.

Read More LINE Messaging Bugs Open Asian Users to Cyber Espionage
Blog

Have You Turned Off Your Virtual Oven?

You check that the windows are shut before leaving home. Return to the kitchen to verify that the oven and stove were definitely turned off. Maybe even circle back again to confirm the front door was properly closed. These automatic safety checks give you peace of mind because you know the unlikely but potentially dangerous…

Read More Have You Turned Off Your Virtual Oven?
Blog

Initial Access Brokers Shift Tactics, Selling More for Less

What are IABs? Initial Access Brokers (IABs) specialize in gaining unauthorized entry into computer systems and networks, then selling that access to other cybercriminals. This division of labor allows IABs to concentrate on their core expertise: exploiting vulnerabilities through methods like social engineering and brute-force attacks. By selling access, they significantly mitigate the

Read More Initial Access Brokers Shift Tactics, Selling More for Less
Blog

Storm-1175 Deploys Medusa Ransomware at ‘High Velocity’

Microsoft says the financially motivated cybercrime group has exploited N-day and zero-day vulnerabilities in campaigns predicated on speed.

Read More Storm-1175 Deploys Medusa Ransomware at ‘High Velocity’

Related