The DuneSlide vulnerabilities enable zero-click prompt injection attacks that escape Cursor's sandbox and execute arbitrary code on the underlying operating system.
Sentire says attacks began June 29 against a CVSS 9.6 OS command injection flaw that enables unauthenticated code execution.
Researchers have discovered two vulnerabilities in the widely used Cursor AI-enabled integrated development environment (IDE) ...
Several products from Ubiquiti's UniFi ecosystem are affected by partly critical vulnerabilities. Admins should promptly ...
SentinelOne says macOS.Gaslight uses prompt injection to mislead AI-based malware analysis, steal data, and use Telegram for ...
Opera browser has announced a new security feature called Paste Protect that aims to stop clipboard-based cyberattacks before ...
DirtyClone, tracked as CVE-2026-43503, is a Linux kernel vulnerability that allows any local user to gain root privileges.
In 2025 and 2026, several independent sources have highlighted the same trend: Prompt injection remains one of the most ...
ThreatsDay Bulletin covers this week’s cyber threats, from phishing and ransomware to exposed AI systems, sandbox flaws, and ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results