> TritonInfoSec News

Home / Apr 24, 2026 / Story

#2 BleepingComputer general April 23, 2026 at 19:21 UTC

Bitwarden CLI npm package compromised to steal developer credentials

By Lawrence Abrams

AI Summary

The Bitwarden CLI npm package (@bitwarden/[email protected]) was compromised as part of an ongoing supply chain attack targeting Checkmarx tools, with malicious code embedded in 'bw1.js' designed to steal developer credentials. This attack affects thousands of developers who rely on Bitwarden CLI for secure credential management in their development workflows.

Read full article → https://www.bleepingcomputer.com/news/security/bit…

Relevance score: 90.0/100

Sponsored

Protect Your Business

Expert cybersecurity solutions to safeguard your organization from evolving threats.

Get Protected →

# More from April 24

1
CISA: US agency breached through Cisco vulnerability, FIRESTARTER backdoor allowed access through March The Record
3
New Checkmarx supply-chain breach affects KICS analysis tool BleepingComputer
4
UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware The Hacker News
5
UK warns of Chinese hackers using proxy networks to evade detection BleepingComputer
6
New GopherWhisper APT group abuses Outlook, Slack, Discord for comms BleepingComputer
7
Apple Patches iOS Flaw That Stored Deleted Signal Notifications in FBI Forensic Case The Hacker News
8
CISA orders feds to patch BlueHammer flaw exploited as zero-day BleepingComputer
9
Hackers exploit file upload bug in Breeze Cache WordPress plugin BleepingComputer
10
US, UK agencies warn hackers were hiding on Cisco firewalls long after patches were applied CyberScoop