For 93 minutes, installing Bitwarden’s ‘official’ CLI turned laptops into launchpads for hijacking GitHub accounts

中文日本語 Español

CryptoSlate Apr 24, 2026

A malicious version of Bitwarden's CLI on npm exposed developer credentials and infrastructure secrets for 93 minutes during a supply chain attack.

Read Full Article

Summary

For 93 minutes on April 22, a backdoored version of Bitwarden’s command-line interface was distributed via the official npm registry. Security firm JFrog discovered that the malware targeted developer environments to harvest sensitive credentials, including GitHub tokens, AWS and GCP keys, and SSH credentials, rather than accessing Bitwarden vaults directly. Bitwarden confirmed the breach was part of a larger supply chain campaign linked to compromised GitHub Actions, emphasizing that even 'official' packages can pose severe risks if the underlying release workflows are compromised.

(Source：CryptoSlate)

中文日本語 Español

Read Full Article

CryptoSlate Apr 24, 2026

Trump “not happy” with prediction markets – says world is a “casino” as Special Forces soldier arrested for insider trading on Polymarket

BeInCrypto Apr 24, 2026

South Africa Crypto Regulations Could Jail Users for Refusing to Share Keys

Cointelegraph Apr 24, 2026

Metaplanet Raises $50M in Zero-Interest Bonds to Buy Bitcoin

BeInCrypto Apr 24, 2026

BIS Warns Crypto Giants Now Act Like Banks — Without the Rulebook

CoinDesk Apr 24, 2026