News

The Hacker News6h

Cursor AI Code Editor Fixed Flaw Allowing Attackers to Run Commands via Prompt Injection

Critical flaw in Cursor AI editor let attackers execute remote code via Slack and GitHub—fixed in v1.3 update.

Nearly half of all code generated by AI found to contain security flaws - even big LLMs affected

Report finds 45% of AI-generated code had security flaws Java is the worst offender, Python, C# and JavaScript also affected ...
The Hacker News11h

AI-Generated Malicious npm Package Drains Solana Funds from 1,500+ Before Takedown

In the npm ecosystem, postinstall scripts are often overlooked attack vectors—they run automatically after a package is ...
Opinion

With great AI power comes great skilling responsibility

There was a time when power meant scale. Armies, empires, institutions. Today, a single person with a laptop and internet access can move markets, generate headlines, influence public discourse, or ...
InfoWorld15h

Fun and profit with ECMAScript 2025: What’s new in JavaScript

The latest JavaScript update dropped recently, with three big new features that are worth your time. Also this month: A fresh ...