Why You Must Check Your Password Manager Immediately | THREAT WIRE

This cybersecurity news roundup covers several critical incidents. Bitwarden experienced a software supply chain attack on April 22nd, 2026, affecting its NPM-distributed version for 90 minutes. This attack, linked to the "checkmarks" vulnerability, compromised CLI identities to steal credentials from developer workstations, targeting GitHub, NPM tokens, SSH material, AWS, GCP, Azure, and GitHub action secrets. Developers are increasingly targeted, making cybersecurity education crucial. Apple released a patch for CVE 2026-28-950, addressing a vulnerability allowing the unexpected retention of deleted notifications, which had been exploited to retrieve Signal messages. Signal publicly thanked Apple for the swift fix. Coding company Lovable faced a significant data leak. Weezer OSINT exposed deep insecurities, accessing other users' source code and database credentials through a free account. Lovable had previously patched the issue for new projects only, leading to a backend regression in February 2026 that re-enabled public access to chat history and source code for older public projects. Additionally, rumors circulate about unauthorized access to Cloud Mythos LLMs. A hacking forum exposed a data breach of the French government, compromising 19 million citizen IDs. GitHub outages continue, and Microsoft now allows Copilot uninstallation from enterprise devices.