https://hackingpassion.com/tags/bitwarden/Recent content in Bitwarden on HackingPassion.com : root@HackingPassion.com-[~]HugoenFri, 24 Apr 2026 11:30:31 +0200https://hackingpassion.com/bitwarden-cli-supply-chain-attack/Fri, 24 Apr 2026 11:30:31 +0200https://hackingpassion.com/bitwarden-cli-supply-chain-attack/<p>Bitwarden&rsquo;s CLI was backdoored and pushed to npm on April 22, 2026. It was live for <strong>93 minutes</strong>. Every developer who installed it during that window has to treat their <strong>entire machine as compromised</strong>. GitHub tokens, SSH keys, AWS credentials, cloud secrets. All of it.</p> <p>If you followed the Shai-Hulud story back in November 2025, this will sound familiar. That attack spread through npm and hit packages from Zapier, Postman, PostHog, and hundreds of others. <strong>132 million monthly downloads affected.</strong> Stolen credentials dumped into public GitHub repositories for anyone to find. This new attack names itself <strong>Shai-Hulud: The Third Coming</strong>, after the giant sandworms from Frank Herbert&rsquo;s Dune. The irony is that this third wave specifically targets AI tools.</p>