Backdoor discovered in Ruby "strong password" library, takes your "strong passwords" and uploads them into a pastebin nakedsecurity.sophos.com/2019/07/09/bac
Hi, do you believe me when I say we need ocap security yet
Conversation
Replying to
From reading your source, it seems what it actually does is download and execute code *from* a pastebin.
2
2
still would require you to grant the code the "use a connection to pastebin" capability