No REST for the wicked: Ruby gem hacked to siphon passwords, secrets from web devs

No REST for the wicked: Ruby gem hacked to siphon passwords, secrets from web devs

Developer account cracked due to credential reuse, source tampered with and released to hundreds of programmers


An old version of a Ruby software package called rest-client that was modified and released about a week ago has been removed from the Ruby Gems repository – because it was found to be deliberately leaking victims' credentials to a remote server.


Jussi Koljonen, a developer with Visma in Helsinki, Finland, discovered the hacked code in rest-client v1.6.13, and opened an issue to discuss the matter on the GitHub repo for the software. The gem, originally intended to help Ruby developers send REST requests to their web apps, was altered to fetch malicious code from pastebin.com that steals usernames, passwords, and other secrets from th ..