An eagle-eyed developer has discovered a backdoor recently sneaked into a library (or ‘gem’) used by Ruby on Rails (RoR) web apps to check password strength.

from Naked Security https://ift.tt/32gF7WJ
via IFTTT