08 Jun '13, 10am

Hackers exploit Ruby on Rails vulnerability to compromise servers, create botnet | Matias Vangsnes

Hackers exploit Ruby on Rails vulnerability to compromise servers, create botnet | Matias Vangsnes

Hackers are actively exploiting a critical vulnerability in the Ruby on Rails Web application development framework in order to compromise Web servers and create a botnet. The Ruby on Rails development team released a security patch for the vulnerability, which is known as CVE-2013-0156, back in January. However, some server administrators haven’t yet updated their Rails installations. Ruby on Rails is a popular framework for developing Web applications based on the Ruby programming language and is used by websites including Hulu, GroupOn, GitHub and Scribd. “It’s pretty surprising that it’s taken this long [for an exploit] to surface in the wild, but less surprising that people are still running vulnerable installations of Rails,” said Jeff Jarmoc, a security consultant with security research firm Matasano Security, Tuesday in a blog post . The exploit that’s currently be...

Full article: http://www.matiasvangsnes.com/nginx/hackers-exploit-ruby-...

Tweets

Allerin - Best Ruby on Rails Development Company

Allerin - Best Ruby on Rails Development Company

Allerin.com 10 Jun '13, 7am

Passport Application System A custom web based system developed for the Citizen Facilitation Centre, Passport Office, Navi...

browsercms | ruby on rails ) What we have left ...

freelancer.com 09 Jun '13, 3am

( browsercms | ruby on rails ) What we have left to do is: 1. Install Game 2 | Siege on Stars on our servers ( Done) 2. Cr...

#freelance jobs: Pay pal intergration using Rub...

freelancer.com 08 Jun '13, 8am

You have to intergrate paypal using ruby on rails. I need to get this work done on urgent basis. The expected time to do t...

Tips for reducing #foodwaste: (also known as how to make the most of your freezer)

Tips for reducing #foodwaste: (also known as ho...

gorgeouslygreen.com 09 Jun '13, 5pm

Landfills are a major source of methane production caused by humans because once food is thrown into one of these giant pi...

Some kid created a web site for me on Ruby on R...

freelancer.com 12 Jun '13, 11pm

Some kid created a web site for me on Ruby on Rails. He developed it in Heroku. After he finished and I approved the websi...

Flash: Ruby on Rails 4 RC2 is released!

stream.rubydaily.org 11 Jun '13, 10pm

Flash: Ruby on Rails 4 RC2 is released! The last release candidate before the final version of Ruby on Rails 4 is released...

Best Web Hosting for Ruby On Rails application ...

coderwall.com 16 Jun '13, 9pm

Sorry, but I highly disagree with the points you mention in this article. As developer, I didn't need to run bundle instal...

I've developed a strange habit. I go to type I instead type I don't know how or why I do this.

I've developed a strange habit. I go to type I ...

fasthosts.co.uk 10 Jun '13, 7pm

Domain Names Domain Registration Choosing Domain Names Get Your First Domain Domain Extensions Domain Name Reviews Transfe...

New from our Blog - Railsgoat, a free Ruby on Rails-focused security learning tool

New from our Blog - Railsgoat, a free Ruby on R...

blog.nvisium.com 10 Jun '13, 4pm

The Open Web Application Security Project or "OWASP" is an organization dedicated to non-profit (open source) efforts that...