RubyGems.org MFA - The Past, Present and Future

Explore the critical importance of Multi-Factor Authentication (MFA) in preventing account takeovers on RubyGems.org in this 29-minute conference talk from RubyConf Mini 2022. Discover how MFA can prevent 99.9% of account takeover attacks and protect against malicious code uploads. Learn about the history of MFA support on RubyGems.org, the implementation of new MFA policies for top gems, and future developments in security measures. Gain insights into real-world examples of account takeovers in popular packages across different programming languages and understand the potential consequences of such attacks, including data theft and system compromise.

RubyConf Mini 2022: RubyGems.org MFA: The Past, Present and Future by Jenny Shen