Aggregator

You must login to view this content

You must login to view this content

Security researchers have successfully exploited vulnerabilities in Cursor’s Background Agents to gain unauthorized access to an Amazon EC2 instance, demonstrating critical risks associated with SaaS applications that integrate deeply with cloud infrastructure. The researchers immediately disclosed their findings to Cursor’s security team, who confirmed that safeguards were in place to prevent misuse. Initial Discovery and […]

The post Researchers Exploit Cursor Background Agents to Take Over Amazon EC2 Instance appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Vibe coding is here. And it’s not just a fad — it’s reshaping how we build, deploy and even conceive of software. But unless we hit the brakes and bake in security now, we’re setting ourselves up for another generation of vulnerabilities, exploits and blame games.

The post The “S” in Vibe Coding Stands for Security appeared first on Security Boulevard.

GitLab has released critical security patches addressing multiple vulnerabilities across its Community Edition (CE) and Enterprise Edition (EE) platforms, with versions 18.2.1, 18.1.3, and 18.0.5 now available for immediate deployment.  The release includes fixes for six distinct security vulnerabilities, including two high-severity cross-site scripting (XSS) issues that pose significant risks to Kubernetes proxy functionality.  Key […]

The post GitLab Security Update – Patch for Multiple Vulnerabilities in Community and Enterprise Edition appeared first on Cyber Security News.

Sonicwall is asking customers running specific Secure Mobile Access (SMA) 100 Series devices to patch a newly uncovered vulnerability (CVE-2025-40599) as soon as possible. “While there is currently no evidence that this vulnerability is being actively exploited in the wild,” Sonicwall is advising organizations using SMA 210, 410 or 500v appliances to check whether they have been compromised in a recently disclosed ongoing campaign delivering the OVERSTEP backdoor to end-of-life SMA devices. The attack campaign, … More →

The post Sonicwall fixes critical flaw in SMA appliances, urges customers to check for compromise (CVE-2025-40599) appeared first on Help Net Security.