Cloud Act

Cursor AI editor vulnerability could enable covert code execution on folder open, researchers warn

News, Privacy, Risk, Vulnerabilities

September 12, 2025

A vulnerability in Cursor, the AI-augmented fork of Visual Studio Code, could allow attackers to silently run code on a user’s machine when a repository is opened, researchers warn, due to default Workspace Trust settings and potential autorun configurations.
PipeMagic backdoor used in RansomExx attacks tied to patched Windows vulnerability CVE-2025-29824

Cybercrime, News, Risk, Vulnerabilities

August 19, 2025

Security researchers say the PipeMagic backdoor, used in RansomExx attacks, exploits a patched Windows vulnerability (CVE-2025-29824) and leverages a modular loader to deploy additional payloads, with activity spanning Saudi Arabia, Brazil and beyond.
Microsoft Warns of Data Sovereignty Challenges Amid US Cloud Act

Cybercrime, News, Privacy, Vendors

July 26, 2025

Microsoft has acknowledged it cannot guarantee data sovereignty for its customers in France and the EU due to the Cloud Act, raising significant privacy and security concerns amid increasing tensions between the US and European nations.