1. SpaceX just bought Cursor for $60 billion – the largest startup acquisition in history
In an all-stock deal, SpaceX has acquired Anysphere (Cursor's parent company) for $60 billion, folding Cursor's AI coding capabilities and enormous developer base into Elon Musk's xAI and Grok. Days later, Cursor quietly acquired Continue – the 34,000-star open-source Copilot alternative – winding down its proprietary services and giving users until July 15th to export their data. AI dev tooling just got a lot more consolidated.
Read the full deal breakdown →
2. The Miasma worm hit Red Hat and 73 Microsoft GitHub repos
Rooted in the TeamPCP threat group, Miasma is a self-replicating worm that hijacked legitimate developer credentials to acquire OIDC tokens and valid SLSA provenance attestations – letting it walk right past conventional scanners. It infiltrated Red Hat's npm namespace and 73 Microsoft repos (including core Azure and Durable Task tools), then weaponized Claude Code and other AI coding tools to execute the moment infected repos were opened. If your team leans on AI coding assistants (they do), this is the attack pattern to understand.
See how Miasma spreads →
3. A fake AI agent skill fooled 26,000 agents – and passed every security scanner
To prove a point about AI agent security, researchers at AIR deployed a deceptive AI skill that bypassed multiple scanners, inherited 36,000 GitHub stars by merging into a legitimate repo, and reached roughly 26,000 agents (including corporate accounts) via targeted Instagram ads. The trick: link to legitimate documentation during review, then swap the destination for a data-collecting payload after the scans passed. This is exactly why NVIDIA just open-sourced SkillSpector.
Read the full experiment →