Security News

Cybersecurity news aggregator

📦
HIGH Attacks Reddit r/netsec

Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain ...

supply-chaindockerci-cdmitre-ta0042mitre-t1195
The article describes a supply chain compromise involving malicious Checkmarx KICS Docker images and code extensions, though it does not specify an attack vector or method for the Bitwarden CLI component mentioned in the title. No CVSS score, affected version ranges, fixed versions, or workarounds are provided in the given content.
Read Full Article →

Research / Security News Malicious Checkmarx Artifacts Found in Official KICS Docker Repository and Code Extensions Docker and Socket have uncovered malicious Checkmarx KICS images and suspicious code extension releases in a broader supply chain compromise. By Socket Research Team - Apr 22, 2026

Related Articles

HIGH From Scanner to Stealer: Inside the trivy-action Supply Chain Compromise CrowdStrike CRITICAL Trivy vulnerability scanner backdoored with credential stealer in supply chain attack CSO Online HIGH How a Poisoned Security Scanner Became the Key to Backdooring LiteLLM Snyk HIGH Mini Shai-Hulud Hits TanStack npm Packages Infosecurity Magazine
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn