So it only affected users of the CLI (Command Line Interface) for a short period of time, which means the vast majority of users are still safe.
according to a moderator of the Bitwarden community forum, “it seems that only 334 Bitwarden users downloaded the malicious version of the CLI,” during the time it was available.
So it only affected users of the CLI (Command Line Interface) for a short period of time, which means the vast majority of users are still safe.
Like most supply chain attacks, it’s targeting developers and other people who use tooling like this rather than Bob and Alice on the street.