Security researcher Paul McCarty discovered malicious packages uploaded to NPM that appeared designed to compromise data from Cursor, an AI code editor company.
The cursor-shadow-workspace package could capture sensitive information, including GitHub credentials and AWS keys, if installed, highlighting the dangers of malicious coding practices.
The use of a Snyk email address for the package's metadata raises eyebrows about potential involvement, sparking debate and concern in developer security circles.
Despite the alarming discovery, some voices in the industry suggest that there might have been no intentional wrongdoing, emphasizing a lack of clear evidence.
Collection
[
|
...
]