Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

GitGuardian confirms Bitwarden CLI compromise tied to Dependabot attack path

GitHub used as C2, new Cloudflare exfiltration domain found, linked to April 22 Checkmarx KICS compromise via Dependabot.
The Hacker News

ThreatsDay Bulletin: $290M DeFi Hack, macOS LotL Abuse, ProxySmart SIM Farms +25 New Stories

ThreatsDay Bulletin: active exploits, supply chain attacks, AI abuse, and stealth data risks observed this week.
Tom's Guide

190 Phones & Mobile Carriers coupon codes for April 2026

Save money on everything from mobile phones and contracts to cases and accessories with one of our 190 Phones & Mobile Carriers coupon codes All coupon content is created by Tom’s Guide. We may earn a ...