https://cybercrime.club/tags/checkmarx/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usFri, 24 Apr 2026 23:11:03 -0400https://cybercrime.club/posts/bitwarden-cli-2026-4-0-shai-hulud-third-coming-npm-worm/Fri, 24 Apr 2026 23:11:03 -0400https://cybercrime.club/posts/bitwarden-cli-2026-4-0-shai-hulud-third-coming-npm-worm/A trojanized @bitwarden/cli@2026.4.0 sat live on npm for 93 minutes on April 22, exfiltrating GitHub/npm tokens, SSH keys, cloud creds, and crypto wallet keys — and self-propagating through victims' own npm packages. The pivot came from the ongoing Checkmarx/TeamPCP campaign.supply-chain