CSO Online

Rogue MCP servers can take over Cursor’s built-in browser

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser ...

Kerberoasting in 2025: How to protect your service accounts

Kerberoasting attacks let hackers steal service account passwords and escalate to domain admin, often without triggering ...