'WhiteCobra' floods VSCode market with crypto-stealing extensions

A threat actor named WhiteCobra has targeting VSCode, Cursor, and Windsurf users by planting 24 malicious extensions in the ...
Infosecurity Magazine

Cursor Autorun Flaw Lets Repositories Execute Code Without Consent

A newly disclosed flaw in the Cursor extension allows repositories to automatically execute code when a folder is opened, ...
itc.ua

How «unfortunate»: a blockchain developer from russia lost $500k in crypto due to a fake extension for Cursor

A blockchain developer from russia lost about $500 thousand in cryptocurrency due to the installation of a malicious extension for Cursor AI code editor. The victim was looking for a regular extension ...
CSO Online

Cursor’s autorun lets hackers execute arbitrary code

By default, malicious repositories run automatically when a folder is opened, putting developer machines and sensitive ...
Cybernews

Vibe coders lose crypto after installing extensions on popular marketplaces

Programmers using popular AI tools (Cursor, Windsurf, VSCode) get their crypto stolen by hackers, who infiltrate extension marketplaces.
The Droid Guy

Cursor vs Replit: Which Is Better for Vibe Coding Your Next App?

Whether you’re hacking together a side project, experimenting with a creative idea, or diving into a passion app over the weekend, the environment you choose to code in makes a big difference. This is ...
CoinTelegraph

Ethereum core dev’s crypto wallet drained by malicious AI extension

Ethereum core dev Zak Cole lost funds after a malicious Cursor extension stole his private key, highlighting increasing wallet drainer attacks on builders. A core Ethereum developer said he was hit by ...