Security News RubyGems, PyPI Hit by Malicious Packages Stealing Credentials, Crypto, Forcing Security Changes TheHackerNews Daniel Bender Aug 8, 2025 RubyGems and PyPI hit by credential-stealing packages targeting automation and crypto users, prompting new security rules.