Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials



May 09, 2025 at 04:27PM

Cybersecurity researchers have flagged three malicious npm packages that are designed to target the Apple macOS version of Cursor, a popular artificial intelligence (AI)-powered source code editor. "Disguised as developer tools offering 'the cheapest Cursor API,' these packages steal user credentials, fetch an encrypted payload from threat actor-controlled infrastructure, overwrite Cursor's

from The Hacker News https://ift.tt/k8Pb5gp

Genrerating Link.... 15 seconds.

Your Link is Ready.

Share this post