Published at LXer:
Criminals are using an old weakness in the Ruby on Rails web application framework to recruit vulnerable servers into a botnet. Developers running Ruby on Rails should install an update that was released in late January for a serious remote execution flaw that attackers began exploiting in the past week.
Read More...