The DuneSlide vulnerabilities enable zero-click prompt injection attacks that escape Cursor's sandbox and execute arbitrary code on the underlying operating system.
A campaign active since last November has been targeting Python developers building Telegram bots with trojanized Pyrogram ...
Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted ...
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Infosecurity spoke with the researcher who dumped over 30 proof-of-concept exploits without disclosing the vulnerabilities ...