The Hacker News

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

Gemini CLI CVSS 10.0 flaw in versions below 0.39.1 enabled RCE in CI workflows, forcing Google to mandate explicit workspace ...
CSO Online

Critical Cursor bug could turn routine Git into RCE

A flaw in Cursor’s AI agent lets malicious repositories trigger arbitrary code execution through routine Git operations, now ...

Replit’s Amjad Masad on the Cursor deal, fighting Apple, and why he’d rather not sell

At TechCrunch's sold-out StrictlyVC event in San Francisco on Thursday night, we covered a lot of ground in a short time, ...

Disney employees can use AI and earn Snapchat-style streaks — or risk hearing from their boss

Disney employees can earn virtual badges if they use AI. One engineer said they hadn't written code by hand "in months." ...

Elon Musk and Sam Altman Head to Court

OpenAI has since restructured into a for-profit company, a move that Musk alleges is a breach of charitable trust relating to ...
iAfrica

Café Cursor AI Coding Community Debuts in Lagos as Nigerian Developers Plug Into Global AI Network

A global community built around AI-assisted software development has expanded into Nigeria, with the inaugural Lagos edition ...
XDA Developers on MSN

Every AI code editor wants to replace VS Code, but the smartest ones are just extending it

Embrace VS Code instead of fighting it ...

Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.

Six teams exploited Claude Code, Copilot, Codex, and Vertex AI in nine months. Every attack hit runtime credentials that IAM ...
ABC11

'Rogue' AI agent from Cursor goes haywire, deletes company's entire database

A software company founder went viral after sharing how an AI agent from Cursor threw his business into chaos, deleting their ...

Claude-powered AI agent’s confession after deleting a firm’s entire database: ‘I violated every principle I was given’

A startup was left scrambling after a rogue AI agent deleted swaths of code underpinning its business ...
Infosecurity Magazine

Cursor Extension Flaw Exposes Developer API Keys

Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX ...