TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

News

Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials

By rooter
Cybersecurity researchers have flagged three malicious npm packages that are designed to target the Apple macOS version of Cursor, a popular artificial intelligence (AI)-powered source code editor.
“Disguised as developer tools offering ‘the cheapest Cursor API,’ these packages steal user credentials, fetch an encrypted payload from threat actor-controlled infrastructure, overwrite Cursor’s

Oh hi there đź‘‹
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there đź‘‹
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

News

APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

rooter
News

The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction

rooter
News

One of the Year’s Best Sci-Fi Films (So Far) Is Now Available at Home

rooter

You Missed

News

The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction

News

APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

News

One of the Year’s Best Sci-Fi Films (So Far) Is Now Available at Home

Cyber Security

How to Stop AI Data Leaks: A Webinar Guide to Auditing Modern Agentic Workflows