Hacker NewsJul 15, 2025
Code highlighting extension for Cursor AI used for $500k theft
https://securelist.com/open-source-package-for-cursor-ai-turned-into-a-crypto-heist/116908/
#ycombinator #Backdoor #Cryptocurrencies #Malware #Malware_Descriptions #Malware_Technologies #Open_source #PowerShell #Trojan_stealer
Code highlighting with Cursor AI for $500,000

Kaspersky GReAT experts uncover malicious extensions for Cursor AI that download the Quasar backdoor and a crypto stealer.

Kaspersky
 Hacker NewsJul 15, 2025
Cursor AI extension used for $500k theft
https://securelist.com/open-source-package-for-cursor-ai-turned-into-a-crypto-heist/116908/
#ycombinator #Backdoor #Cryptocurrencies #Malware #Malware_Descriptions #Malware_Technologies #Open_source #PowerShell #Trojan_stealer
Code highlighting with Cursor AI for $500,000

Kaspersky GReAT experts uncover malicious extensions for Cursor AI that download the Quasar backdoor and a crypto stealer.

Kaspersky
 Hacker NewsJul 15, 2025
Code highlighting with Cursor AI used for $500k theft
https://securelist.com/open-source-package-for-cursor-ai-turned-into-a-crypto-heist/116908/
#ycombinator #Backdoor #Cryptocurrencies #Malware #Malware_Descriptions #Malware_Technologies #Open_source #PowerShell #Trojan_stealer
Code highlighting with Cursor AI for $500,000

Kaspersky GReAT experts uncover malicious extensions for Cursor AI that download the Quasar backdoor and a crypto stealer.

Kaspersky
 Hacker NewsFeb 5, 2025
OCR Crypto Stealers in Google Play and App Store
https://securelist.com/sparkcat-stealer-in-app-store-and-google-play/115385/
#ycombinator #Apple_iOS #Cryptocurrencies #Google_Android #Malware #Malware_Descriptions #Malware_Technologies #Mobile_Malware #Trojan #Trojan_stealer
Take my money: OCR crypto stealers in Google Play and App Store

Kaspersky experts discover iOS and Android apps infected with the SparkCat crypto stealer in Google Play and the App Store. It steals crypto wallet data using an OCR model.

Kaspersky
 Hacker NewsApr 13, 2024
XZ backdoor story – Initial analysis
https://securelist.com/xz-backdoor-story-part-1/112354/
#ycombinator #Backdoor #Cyber_espionage #Linux #Malware #Malware_Descriptions #Malware_Technologies #SSH
XZ backdoor story - Initial analysis

Kaspersky analysis of the backdoor recently found in XZ, which is used in many popular Linux distributions and in OpenSSH server process.

Kaspersky
 Hacker NewsMar 6, 2024
Network Tunneling with QEMU
https://securelist.com/network-tunneling-with-qemu/111803/
#ycombinator #Malware_Technologies #RDP #Virtualization
Network tunneling with… QEMU?

While investigating an incident, we detected uncommon malicious activity inside one of the systems. We ran an analysis on the artifacts, only to find that the adversary had deployed and launched the QEMU hardware emulator.

Kaspersky
 Hacker NewsDec 27, 2023
Operation Triangulation: What You Get When Attack iPhones of Researchers
https://securelist.com/operation-triangulation-the-last-hardware-mystery/111669/
#ycombinator #Apple #Malware_Technologies #Reverse_engineering #Targeted_attacks #Triangulation #Vulnerabilities_and_exploits #Zero_day_vulnerabilities
Operation Triangulation: The last (hardware) mystery

Recent iPhone models have additional hardware-based security protection for sensitive regions of the kernel memory. We discovered that to bypass this hardware-based security protection, the attackers used another hardware feature of Apple-designed SoCs.

Kaspersky