CSOonline

Rogue MCP servers can take over Cursor’s built-in browser

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser — and potentially leverage the IDE’s privileges to perform system tasks.
The Next Web

SpaceX secures option to buy AI coding startup Cursor for $60B

SpaceX announced the deal on X, pre-empting a New York Times report that framed it as a completed acquisition. The structure gives SpaceX optionality: exercise the call by year end or walk away having ...