{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreiemqsnsce2dwirwflmzdhpyil5aoe2yb5t7uutatc454zu4wwnjzm",
    "uri": "at://did:plc:3jg5ch2x6onc5mwonrp5wps6/app.bsky.feed.post/3mkadl6c4vcq2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreiagnx4aaij6526lcpp6mcn76jgrt2vuy4teyryfvktxug2kmeba5e"
    },
    "mimeType": "image/jpeg",
    "size": 246174
  },
  "path": "/for-93-minutes-installing-bitwardens-official-cli-turned-laptops-into-launchpads-for-hijacking-github-accounts/",
  "publishedAt": "2026-04-24T10:35:22.000Z",
  "site": "https://cryptoslate.com",
  "tags": [
    "Featured",
    "Hacks",
    "Scams",
    "Technology",
    "Wallets",
    "For 93 minutes, installing Bitwarden’s ‘official’ CLI turned laptops into launchpads for hijacking GitHub accounts",
    "CryptoSlate",
    "@bitwarden"
  ],
  "textContent": "On Apr. 22, a malicious version of Bitwarden's command-line interface appeared on npm under the official package name @bitwarden/cli@2026.4.0. For 93 minutes, anyone who pulled the CLI through npm received a backdoored substitute for the legitimate tool. Bitwarden detected the compromise, removed the package, and issued a statement saying it found no evidence that attackers […]\n\nThe post For 93 minutes, installing Bitwarden’s ‘official’ CLI turned laptops into launchpads for hijacking GitHub accounts appeared first on CryptoSlate.",
  "title": "For 93 minutes, installing Bitwarden’s ‘official’ CLI turned laptops into launchpads for hijacking GitHub accounts"
}