Bitwarden Headlines

Eastern Herald

An ETH Zurich study found security vulnerabilities in password managers including Bitwarden, with researchers executing 27 attacks; the article discusses implications and passkeys.

Companies:Bitwarden

CNCF Blog

A technical blog post explains how to use External Secrets Operator with Bitwarden Secrets Manager to manage secrets across Kubernetes clusters, highlighting Bitwarden's role.

Companies:Bitwarden

Cybersecurity Insiders

An article analyzing the TeamPCP supply chain campaign, which includes the Bitwarden CLI compromise as a key example.

Companies:Bitwarden

Yahoo Finance

Bitwarden announced the availability of its self-hosted server images in AWS Marketplace and Azure Marketplace, simplifying deployment for organizations.

Companies:Bitwarden

Global Security Mag Online

Bitwarden announced the general availability of Bitwarden Passwordless.dev, a developer toolkit for integrating passkeys.

Companies:Bitwarden

Lyrie Research

A self-propagating worm compromised the Bitwarden CLI npm package, exfiltrating credentials from developers' machines and using GitHub as a C2 channel.

Companies:Bitwarden

Lyrie Research

Lyrie Research reports on the Shai-Hulud supply chain attack including the compromise of Bitwarden CLI.

Companies:Bitwarden

Lyrie Research

In-depth post-mortem of the Shai-Hulud supply chain attack that compromised Bitwarden CLI.

Companies:Bitwarden

Lyrie Research

Covers the Mini Shai-Hulud campaign affecting Bitwarden CLI among other packages, detailing the attack chain and credential harvesting.

Companies:Bitwarden

Android Police

The author discusses switching to open-source Android apps to save money, and mentions Joplin as a free note-taking alternative to paid apps like Evernote and Notion, highlighting its offline support and sync capabilities.

Companies:BitwardenJoplin

HackMag

The Bitwarden CLI npm package was hacked to steal credentials; the attack was part of a larger campaign.

Companies:Bitwarden

Security Point Break

The Bitwarden CLI supply chain attack targeted AI tool credentials, indicating a shift in attacker focus.

Companies:Bitwarden

Gadget Review

Bitwarden confirms a 93-minute compromise of its CLI tool affecting 334 users, but user vaults remain secure.

Companies:Bitwarden

Linuxiac

Bitwarden confirmed a brief npm compromise of its CLI package, which stole developer secrets but not vault data.

Companies:Bitwarden

Socket

Socket researchers discovered that Bitwarden CLI was compromised as part of a supply chain attack, affecting millions of users.

Companies:BitwardenSocket

Bitwarden Blog

Bitwarden has introduced a new policy for enterprise customers that centralizes ownership of all vault items, including unshared ones, to enable comprehensive reporting, easier employee transitions, and full credential lifecycle management. This enhances security oversight and streamlines administrative tasks.

Companies:Bitwarden

BusinessWire

Bitwarden announced the Agent Access SDK, an open standard to help organizations and developers securely manage how AI agents request, receive, and use credentials.

Companies:Bitwarden

BusinessWire

Bitwarden has introduced passkey login support for Windows 11, enhancing security and convenience for users. This integration allows users to log in to their Bitwarden accounts on Windows 11 devices using passkeys.

Companies:Bitwarden

TechCrunch

TechCrunch published an article titled "Open source tools to boost your productivity." The article provides a guide to open-source alternative software.

Companies:AppFlowyCal.comTabbyMLChatwoot+7 more