Advertisement
SU
HIGH
Supply Chain
Bitwarden NPM Supply Chain Attack: Analyzing the TeamPCP Campaign
A malicious npm package impersonating Bitwarden was discovered exfiltrating sensitive data via the Shai-Hulud worm in a recent supply chain attack.
Runtime Rebel Intel
3 min read·Apr 24, 2026
SU
HIGH
Supply Chain
Supply Chain Attack: Bitwarden CLI npm Package Compromised
Analysis of the Bitwarden CLI npm package compromise (version 2023.12.0) leading to developer credential theft and supply chain risk. Includes mitigation.
Runtime Rebel Intel
5 min read·Apr 23, 2026