JavaScript Module Integrity

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

SecurityWeek

Bitwarden NPM Package Hit in Supply Chain Attack

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

Some results have been hidden because they may be inaccessible to you

Show inaccessible results

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Bitwarden NPM Package Hit in Supply Chain Attack

Bitwarden CLI npm package compromised to steal developer credentials

Trending now