Dark Reading

Cursor Issue Paves Way for Credential-Stealing Attacks

Researchers discovered a security weakness in the AI-powered coding tool that allows malicious MCP server to hijack Cursor's internal browser.

Four Unofficial Ways to Customize MacOS

MacOS is great in all kinds of ways, but it's far from the most customizable operating system out there. Sure, it's not locked down to the extent iOS and iPadOS are, but compared to Linux and even ...
CSO Online

Rogue MCP servers can take over Cursor’s built-in browser

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser ...