A Cryptojacking code was found in 11 open-source code libraries written in Ruby that are downloaded thousands of times.

Industry news outlet decrypt according on August. 21 that cryptojacking code has been added to 11 open-source Ruby libraries distributed on the RubyGems platform. Per the report, the infected libraries were downloaded over 3 and a half thousand times.

Hackers reportedly downloaded the software system, infected it with malware, and after re-posted it on RubyGems.

The malicious code was 1st detected by a GitHub user, who announce concerning the problem on August. 19. He discovered that once executed, the library downloaded extra code from text hosting service Pastebin, that then triggered the malicious mining.

Furthermore, the malware conjointly sent the address of the infected host to the attacker alongside environment variables which can have enclosed credentials.

Some users suggested that Rubygems contributors ought to enable two-factor authentication on their accounts as long as, if compromised, they may be used to infect several systems.

An apparently targeted attack

Five of the libraries infected were cryptocurrency-specific, with names like doge-coin, bitcoin_vanity, coin_base, and blockchain_wallet. The last 2 were reportedly the foremost downloaded, with coin_base numeration 424 downloads and blockchain_wallet 423.

As Top Market Group recently reported, cybersecurity company Varonis has discovered a replacement cryptojacking virus, dubbed “Norman,” that aims to mine the cryptocurrency Monero (XMR) and evade detection.

To know more on Cryptocurrency and Blockchain events, follow us on Facebook, YouTube,  Twitter, LinkedIn, Reddit, Telegram, BitcoinTalk, and we are also on Medium now