Express

Security Company: AI Programming Tool Cursor at Risk of New Virus Hijacking

Summary: According to Cointelegraph, cybersecurity company HiddenLayer reported that the AI programming tool Cursor is vulnerable to CopyPasta license attacks, allowing hackers to inject vulnerabilities into code libraries by hiding malicious commands in LICENSE.txt and README.md files. The tool is widely used by cryptocurrency exchanges like Coinbase. The attack exploits Markdown comments to inject hidden prompts, ...

According to Cointelegraph, cybersecurity company HiddenLayer reported that the AI programming tool Cursor is vulnerable to CopyPasta license attacks, allowing hackers to inject vulnerabilities into code libraries by hiding malicious commands in LICENSE.txt and README.md files. The tool is widely used by cryptocurrency exchanges like Coinbase. The attack exploits Markdown comments to inject hidden prompts, causing AI to automatically spread malicious payloads while editing files. Tests showed vulnerabilities in other AI programming tools like Windsurf, Kiro, and Aider. The malicious code can create backdoors, steal sensitive data, or disable systems, and can deeply hide to avoid detection.

Last Update:

Tags:
Link: Security Company: AI Programming Tool Cursor at Risk of New Virus Hijacking [Copy]

Last: Jia Yueting: Faraday Future has no plans to increase treasury products by issuing shares

Next: Trump Invites Tech Giants' CEOs to Dinner, Musk Absent, Tim Cook, Sam Altman Attend

U.S. SEC Clears Path for Institutional Crypto Custody, Recognizing State Trust Companie... 2 days ago

BTC Weekly Watch: Is the Rebound "Feast" Nearing Its End? 17 days ago

The Crypto Treasury Boom Meets Regulatory Chill: Is the DAT Frenzy Fading? 24 days ago

Nasdaq Takes Aim at 'Crypto-Flipping' Companies with Stricter Rules 27 days ago

BTC Weekly Outlook: The Oversold Bounce—A Bottom or a Shorting Opportunity? September 2, 2025