Cursor AI Extension Flaw Exposes Developer Tokens to Credential Theft
Security researchers at LayerX have uncovered a high-severity vulnerability in the popular AI-powered development environment, Cursor. Dubbed “CursorJacking,” this flaw carries a CVSS score of 8.2 and exposes developers to immediate credential theft. Any installed extension can silently access a use
ORIGINAL SOURCE →via GBHackers Security
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Cyber proxy wars escalate as hackers shift to infrastructure targets
- [CYBER] All supported cPanel versions hit by critical auth bug, now patched
- [CYBER] Set up automated dependency scanning after the recent npm/PyPI supply chain attacks
- [CYBER] Lazarus Targets macOS Users With New “Mach-O Man” Malware Kit
- [CYBER] BJP to breach TMC fort in Bengal, say 3 exit polls; one predicts Mamata win
- [CYBER] Learning from the Vercel breach: Shadow AI & OAuth sprawl