Mozilla fixes two critical Firefox flaws with public exploit code as Google, Adobe, and Broadcom patch Chrome, ColdFusion, and VMware security bugs.
Whatever that binary does, it does as you, with your source, your SSH keys and your cloud tokens. Cursor keeps re-running it for as long as the project stays open.
No prompt injection, no agent, no model in the loop, and no prior access to the machine: opening the folder is the entire exploit, and the result is arbitrary code execution as the logged-in user.
AI security firm Mindgard reported the flaw to Cursor on December 15, 2025 and published full technical details on Tuesday, seven months later. There is still no patch, and Cursor has published no advisory for the issue.
Five malicious versions of AsyncAPI packages were published to the Node Package Manager (npm) in a supply-chain attack that delivered a remote access trojan with info-stealing capabilities.
The threat actor exploited a misconfigured GitHub Actions workflow and pushed trojanized packages in the @asyncapi namespace that had a cummulative weekly download count of more than 2.25 million.
Multiple security companies confirmed that on July 14, an attacker compromised two AsyncAPI GitHub repositories and injected malware into project files.
Zoom is warning of a critical vulnerability in its desktop client and software development kit for Windows that could be exploited by an unauthenticated party to hijack accounts.
Discovered internally, the security issue is tracked as CVE-2026–53412 and received a severity score of 9.8 out of 10.
In an advisory this week, the messaging platform says that the flaw affects Zoom Workplace for Windows before version 7.0.0, the Windows VDI Client before versions 7.0.10, 6.6.15, and 6.5.18, and the Meeting SDK for Windows before version 7.0.0.
A Russian-speaking threat actor known as “bandcampro” used Google’s open-source Gemini CLI AI tool as a hacking agent and to operate a small-scale botnet.
The AI agent responded to the attacker’s prompts, troubleshooting problems on the fly and even proposing operational improvements at least 59 times.
In more than 200 sessions between May 19 and April 21, the threat actor worked with the AI tool to deploy and operate an infrastructure that controlled eight systems in a dental clinic and to get access to the OpenDental database.
1st comment below.
The executive was “going to be killed,” he told the guard, and he needed to warn someone, according to records of the April 15 incident viewed by The Wall Street Journal.
The encounter, which took place five days after an attempted firebombing of OpenAI Chief Executive Officer Sam Altman’s house, ended without violence or an arrest. But for executives at Anthropic—and across the artificial-intelligence industry—the threat was far from over.
In recent months, mounting opposition to AI has given rise to a surge of violent rhetoric, threats against people and property, and a serious attempt at harm. The phenomenon has executives at tech companies large and small reconsidering their personal security arrangements and how they talk about their products to a public that is increasingly wary of the technology and the societal changes it is ushering in.
Are today’s AI systems conscious? What would it mean if they were? And what kind of future should we build if machine consciousness is possible?This first episode of our podcast series focuses on Machine Consciousness and the concept of an AI Awakening.
In this wide-ranging conversation, Joscha Bach (California Institute for Machine Consciousness) and Davidad explore some of the deepest questions at the intersection of AI, philosophy, cognitive science, and the future of civilization. Moderated by Lou de K (CIMC), the discussion was originally recorded ahead of the MC0001 conference (www.machine-consciousness.ai).
The conversation covers:
Whether current large language models might already possess some form of consciousness.
Consciousness as a computational and substrate-independent phenomenon.
The \