Skip to content
The Nexus
DossierENTITY

credential-stealing payload

Coverage of credential-stealing payload in the Nexus archive.

Earliest in view: Apr 23 · 19:21 UTCMost recent: Apr 23 · 19:21 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYApr 23 · 19:21 UTCBLEEPING COMPUTER
    Bitwarden CLI npm package compromised to steal developer credentials

    The Bitwarden CLI was compromised when attackers uploaded a malicious @bitwarden/cli package to npm, containing a credential-stealing payload designed to spread to other projects. The incident highlights vulnerabilities in package registries and the risks of supply chain attacks.

credential-stealing payload · Dossier · The Nexus