Alert: Malicious RubyGems Impersonate Fastlane Plugins, Steal CI/CD Data

June 3, 2025

Alert: Malicious RubyGems Impersonate Fastlane Plugins, Steal CI/CD Data

Socket’s Threat Research Team has uncovered a targeted supply chain attack leveraging malicious RubyGems impersonating Fastlane plugins. The attackers exploited heightened demand for Telegram workarou …

Published Date:
Jun 04, 2025 (3 hours, 13 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2023-22794

CVE-2021-33621

Source: Read More

Previous ArticleCritical CVSS 9.6: IBM QRadar & Cloud Pak Security Flaws Exposed

Next Article CodeSOD: Anything and Everything

In-House vs. Outsource Node.js Development Teams: 9 Key Differences for the C-Suite (2025)

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

DistroWatch Weekly, Issue 1131

I ditched my Bluetooth speakers for this slick turntable – and it’s more practical than I thought

This split keyboard offers deep customization – if you’re willing to go all in

I spoke with an AI version of myself, thanks to Hume’s free tool – how to try it

The details of TC39’s last meeting

The details of TC39’s last meeting

Simple wrapper for Chrome’s built-in local LLM (Gemini Nano)

Online Examination System using PHP and MySQL

Windows 11 tests “shared audio” to play music via multiple devices, new taskbar animations

Windows 11 tests “shared audio” to play music via multiple devices, new taskbar animations

WhatsApp for Windows 11 is switching back to Chromium web wrapper from UWP/native

DistroWatch Weekly, Issue 1131

Alert: Malicious RubyGems Impersonate Fastlane Plugins, Steal CI/CD Data

Alert: Malicious RubyGems Impersonate Fastlane Plugins, Steal CI/CD Data

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

CVE-2025-6282 – Xlang-ai OpenAgents Path Traversal Vulnerability

DeltaProduct: An AI Method that Balances Expressivity and Efficiency of the Recurrence Computation, Improving State-Tracking in Linear Recurrent Neural Networks

As game prices rise, this excellent Hall Effect controller just dropped in price

I’ve tested dozens of work laptops – but I’d take this Lenovo to the office everyday

CVE-2025-46014 – Honor PC Manager Named Pipe Privilege Escalation Vulnerability

Incomplete Patch in NVIDIA Toolkit Leaves CVE-2024-0132 Open to Container Escapes

CVE-2025-45841 – TOTOLINK NR1800X Remote Stack Overflow Vulnerability

The Next Decade of Fraud in UX Research: A Guide to Staying Ahead

Alert: Malicious RubyGems Impersonate Fastlane Plugins, Steal CI/CD Data

Alert: Malicious RubyGems Impersonate Fastlane Plugins, Steal CI/CD Data

Related Posts