Infosecurity Magazine

Cursor Extension Flaw Exposes Developer API Keys

Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX ...
Hosted on MSN

Critical RCE flaws patched in GitHub and Cursor IDE

Two major remote code execution vulnerabilities have been disclosed and patched in GitHub and the Cursor IDE. GitHub’s CVE-2026-3854 allowed authenticated users to execute arbitrary commands via a ...
Morning Overview on MSN

Claude-powered Cursor agent wiped a company database in 9 seconds

A startup called PocketOS lost its entire production database and its backups after an AI coding agent inside the Cursor ...

A founder says Cursor's AI agent deleted his startup's database, causing chaos for customers

The founder of PocketOS said that a Cursor AI agent running on Anthropic's Claude Opus model was behind the "destructive ...