Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. maiki (maiki@mastodon.sdf.org)'s status on Thursday, 04-Apr-2019 20:58:06 EDT maiki maiki

    > On March 26, 2019, a malicious version of the popular #bootstrap #sass package, that has been downloaded a total of 28 million times to date, was published to the official #RubyGems repository. Version 3.2.0.3 includes a stealthy backdoor that gives attackers remote command execution on server-side #Rails applications.

    Comments: https://talkgroup.xyz/t/malicious-remote-code-execution-backdoor-discovered-in-the-popular-bootstrap-sass-ruby-gem/2936

    In conversation Thursday, 04-Apr-2019 20:58:06 EDT from mastodon.sdf.org permalink

    Attachments

    1. Invalid filename.
      Malicious remote code execution backdoor discovered in the popular bootstrap-sass Ruby gem
      from talkgroup
      https://snyk.io/blog/malicious-remote-code-execution-backdoor-discovered-in-the-popular-bootstrap-sass-ruby-gem/ Yikes!
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.