Fedpie@sopuli.xyz to Privacy@lemmy.ml · edit-224 hours agoBitwarden CLI was compromised as part of an ongoing Checkmarx-related supply chain attackalternativeto.netexternal-linkmessage-square17fedilinkarrow-up149arrow-down10file-text
arrow-up149arrow-down1external-linkBitwarden CLI was compromised as part of an ongoing Checkmarx-related supply chain attackalternativeto.netFedpie@sopuli.xyz to Privacy@lemmy.ml · edit-224 hours agomessage-square17fedilinkfile-text
Link to the bitwarden post https://community.bitwarden.com/t/bitwarden-statement-on-checkmarx-supply-chain-incident/96127
minus-squareRustyNova@lemmy.worldlinkfedilinkarrow-up1arrow-down4·1 day agoOh definitely. Not saying it’s impossible But here it would be arguably harder. Need to first get in the repos, and requires the user to log in to the password vault. Syncthing is easier to compromise, but good luck decrypting the vault
Oh definitely. Not saying it’s impossible
But here it would be arguably harder. Need to first get in the repos, and requires the user to log in to the password vault. Syncthing is easier to compromise, but good luck decrypting the vault