Over 700 malicious packages with names similar to legitimate ones have been uploaded to RubyGems. The rogue packages contained a malicious script that hijacked cryptocurrency transactions by replacing the recipient’s wallet address with one controlled by the attacker. The attack targeted Ruby developers who use Windows as their development environment. Software security vendors that specialize in malware detection typically do not integrate with development environments. There is a huge gap in the market, which is being exploited by malware authors,” Tomislav Pericin, co-founder and chief software architect at threat Intelligence.”]