Cybersecurity researchers have revealed a new supply chain attack vector called ‘Rules File Backdoor’ that affects AI-powered code editors like GitHub Copilot and Cursor. The technique allows hackers to inject hidden malicious instructions into configuration files used by these platforms, resulting in AI-generated code being compromised. The attack vector enables silent propagation of malicious code across projects, posing a major supply chain risk.
RSA Day One: Vibe Is 'All In' on AI for Security
At RSA, the focus has shifted from generative AI to agentic AI, highlighting the evolving discussions surrounding artificial intelligence. This transition emphasizes the increasing capabilities
.webp?w=0&resize=0,0&ssl=1 "Apache Tomcat Vulnerability Let Bypass Rules & Trigger DoS Condition")
.webp?w=0&resize=0,0&ssl=1 "CISA Issues Warning on Commvault Web Server Flaw Exploited in the Wild")
