Cursor AI editor lets repos “autorun” malicious code on devices

A weakness in the Cursor code editor exposes developers to the risk of automatically executing tasks in a malicious repository as soon as it's opened.

Hackers hide behind Tor in exposed Docker API breaches

A threat actor targeting exposed Docker APIs has updated its malicious tooling with more dangerous functionality that could ...
Communications of the ACM

Fifty Years of Open Source Software Supply-Chain Security

An open source software supply-chain vulnerability is an exploitable weakness in trusted software caused by a third-party, ...
The Hacker News

TOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIs

The attack chain essentially involves breaking into misconfigured Docker APIs to execute a new container based on the Alpine ...

Apple slips up on ChillyHell macOS malware, lets it past security . . . for 4 years

But despite being documented by the security shop, ChillyHell wasn't flagged as malicious. In fact, the sample uncovered by ...

I retested GPT-5's coding skills using OpenAI's guidance - and now I trust it even less

I used OpenAI's best practices and optimizer to rerun my GPT-5 tests. The results were strange, inconsistent, and sometimes bizarre, raising real concerns about how much developers can trust this AI ...
XDA Developers on MSN

I tried "vibe coding" with ChatGPT, and the vulnerabilities made me never want to use it again

"Vibe coding" is a phenomenon that curiously differs in definition depending on who you're asking. It's a spectrum of sorts; some use AI tools like ChatGPT to develop programs wholesale, with no ...

Nuki Smart Lock secures your house with a phone app

Both the Nuki and the Level Lock Pro supports a system called "Matter Over Thread," meaning that the lock can be controlled ...
SecurityWeek

Exposed Docker APIs Likely Exploited to Build Botnet

Threat actors are exploiting exposed Docker APIs to deploy malware and cryptocurrency miners and potentially create a new botnet.
The Hacker News

Researchers Warn of MystRodX Backdoor Using DNS and ICMP Triggers for Stealthy Control

MystRodX backdoor, active since Jan 2024, uses encrypted payloads and DNS/ICMP triggers for stealthy C2 control.
How-To Geek on MSN

Linux fd Command: 10 Terminal File Search Methods

This means, if you’re working in a checked-out repository, you might not be able to find the files you're expecting. You can ...

FileFix attacks use fake Facebook security alerts to trick victims into running infostealers

ClickFix typically asks the victim to perform a fake CAPTCHA test. FileFix tricks the user into copying and pasting a command ...