[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fnYcSPEpxrz17NsinmcAqHv7cdr12bpW9zUc_Zl1c_Fc":3},{"article":4,"iocs":43},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":23,"category":24,"article_tags":27},"296ff0d7-dcaf-4b95-9797-2f1c205e5bdb","Attackers Weaponize RubyGems for Data Dead Drops","attackers-weaponize-rubygems-for-data-dead-drops-a2878c","Threat actors are publishing RubyGems packages that include scrapers targeting public-facing UK government servers, but with no clear objective.","Attackers have published RubyGems packages containing scraper code that targets public-facing UK government servers. The packages appear designed for data exfiltration or reconnaissance, though the threat actors' ultimate objective remains unclear. This represents a supply chain attack leveraging the Ruby package ecosystem.","Threat actors publish malicious RubyGems packages with scrapers targeting UK government servers.",null,"https:\u002F\u002Fwww.darkreading.com\u002Fapplication-security\u002Fattackers-weaponize-rubygems-data-dead-drops","https:\u002F\u002Feu-images.contentstack.com\u002Fv3\u002Fassets\u002Fblt6d90778a997de1cd\u002Fblt5c3a7f42da5b1b95\u002F6a04cc6a3840020cbc815a66\u002Fruby_Zerilli_Media_Alamy.jpg?width=1280&auto=webp&quality=80&disable=upscale","2026-05-13T21:09:20+00:00","2026-05-13T22:00:28.605775+00:00",7,[18,21],{"name":19,"type":20},"RubyGems","technology",{"name":22,"type":20},"Ruby","26b0b636-0e31-4db1-bffb-61bdf9f20a58",{"id":23,"icon":11,"name":25,"slug":26},"Supply Chain","supply-chain",[28,33,38],{"category":29},{"id":30,"icon":11,"name":31,"slug":32},"89f78b1c-3503-45a1-9fc7-e23d2ce1c6d5","Malware","malware",{"category":34},{"id":35,"icon":11,"name":36,"slug":37},"ade75414-7914-4e23-a450-48b64546ee70","Open Source","open-source",{"category":39},{"id":40,"icon":11,"name":41,"slug":42},"e7b231c8-5f79-4465-8d38-1ef13aea5a14","Threat Intelligence","threat-intelligence",[44],{"type":32,"value":45,"context":46},"RubyGems malicious packages (unspecified)","Packages published to RubyGems repository containing scraper code targeting UK government servers"]