Cybersecurity analysts have identified three harmful npm packages crafted to specifically attack the Apple macOS iteration of Cursor, a widely-used artificial intelligence (AI)-driven source code editor.
“Masquerading as developer utilities promoting ‘the most affordable Cursor API,’ these packages expropriate user credentials, retrieve an encrypted payload from infrastructure managed by malicious actors, and overwrite Cursor’s