News

SecurityWeek18m

Several Vulnerabilities Patched in AI Code Editor Cursor

Attackers could silently modify sensitive MCP files to trigger the execution of arbitrary code without requiring user ...
The Hacker News2d

Cursor AI Code Editor Fixed Flaw Allowing Attackers to Run Commands via Prompt Injection

Critical flaw in Cursor AI editor let attackers execute remote code via Slack and GitHub—fixed in v1.3 update.

AI-powered Cursor IDE vulnerable to prompt-injection attacks

A vulnerability that researchers call CurXecute is present in almost all versions of the AI-powered code editor Cursor, and can be exploited to execute remote code with developer privileges.
The Hacker News6d

Hackers Breach Toptal GitHub, Publish 10 Malicious npm Packages With 5,000 Downloads

In what's the latest instance of a software supply chain attack, unknown threat actors managed to compromise Toptal's GitHub ...

Freelance dev shop Toptal caught serving malware after GitHub account break-in

Developer freelancing platform Toptal has been inadvertently spreading malicious code after attackers broke into its systems ...
Analytics India Magazine11d

This AI Code Editor Now Lets Developers Turn Off the AI Features

Zed, the open-source code editor that focuses on speed and open source technologies, now allows users to disable its AI features completely.
The Financial Express17d

Now file ITR-2 online with pre-filled data: A big relief for THESE taxpayers

The tax department usually rolls out utilities and online forms by April or May. But this year, the release was delayed significantly. ITR-1 and ITR-4 came first in May, but ITR-2 and ITR-3 utilities ...