News

The Hacker News4h

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Cursor is an AI-powered fork of Visual Studio Code, which supports a feature called Workspace Trust to allow developers to ...

OpenAI adds 'powerful but dangerous' support for MCP in ChatGPT dev mode

For developers working with ChatGPT’s new developer mode, this means the connectors they create may not just serve one-off integrations — they could be building into a broader ecosystem standard. MCP ...
Cryptopolitan on MSN19m

Crypto wallets under threat as researchers uncover new malware

Charles Guillemet, Ledger CTO, revealed another similar attack that allowed attackers to compromise a Node Package Manager ...
Securities.io15h

NPM Supply-Chain Attack: What Happened and How to Fix It

Qix is an open source maintainer account that was compromised by a phishing attack. This allowed attackers to infect 18 popular npm packages with malicious code. Together, these packages are ...
CyberGuy16h

Chrome VPN extension secretly spies on you

A Chrome VPN extension with 100k installs was caught spying on users. See how to protect your privacy with safer VPN choices.
WeLiveSecurity15m

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

ESET Research has discovered HybridPetya, a copycat of the infamous Petya/NotPetya malware that adds the capability of ...
York News-Times23h

Friends of the Library explore outdoor options, future plans for Kilgore Memorial Library

It can be hard to find the library, unless you look at our little sign, and that sign is so little,” Executive Director Deb ...