Red Hat npm packages compromised to steal developer credentials
… These attacks have impacted well-known projects, including Bitwarden , SAP , Mistral , TanStack , OpenAI , and GitHub . …
Tracked topic
… These attacks have impacted well-known projects, including Bitwarden , SAP , Mistral , TanStack , OpenAI , and GitHub . …
… By April 2026, the operator was advertising support tied to Bitwarden, 1Password, LastPass, and IndexedDB browser storage. …
… Download Now Related Articles: Grafana says stolen GitHub token let hackers steal codebase TeamPCP hackers advertise Mistral AI code repos for sale Bitwarden CLI npm package compromised to steal developer credentials Checkmarx confirms LAPSUS$ hackers leaked its stolen GitHub data GitHub investigat… …
… Download Now Related Articles: OpenAI confirms security breach in TanStack supply chain attack Shai Hulud attack ships signed malicious TanStack, Mistral npm packages Official SAP npm packages compromised to steal credentials Bitwarden CLI npm package compromised to steal developer credentials Back… …
… Download Now Related Articles: Shai Hulud attack ships signed malicious TanStack, Mistral npm packages Popular node-ipc npm package compromised to steal credentials TeamPCP hackers advertise Mistral AI code repos for sale OpenAI confirms security breach in TanStack supply chain attack Bitwarden CLI… …
… Download Now Related Articles: New Checkmarx supply-chain breach affects KICS analysis tool Smart Slider updates hijacked to push malicious WordPress, Joomla versions Popular node-ipc npm package compromised to steal credentials Shai Hulud attack ships signed malicious TanStack, Mistral npm package… …
… Download Now Related Articles: TeamPCP hackers advertise Mistral AI code repos for sale Official SAP npm packages compromised to steal credentials Shai Hulud attack ships signed malicious TanStack, Mistral npm packages Bitwarden CLI npm package compromised to steal developer credentials Trivy vulne… …
… Download Now Related Articles: Bitwarden CLI npm package compromised to steal developer credentials Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens Inside the REMUS Infostealer: Session Theft, MaaS, and Rapid Evolution The silent “Storm”: New infostealer hijacks sessions, … …
… Next, the infostealer targets the following: Browser data from Google Chrome, Mozilla Firefox, Brave, Microsoft Edge, Opera, Vivaldi, Arc, and Orion Cryptocurrency wallet browser extensions, including MetaMask and Phantom Password manager browser extensions, including 1Password, Bitwarden, and Last… …
… Among more recently compromised projects are the Bitwarden CLI package and the official SAP packages . …