LayerX — Cyber Attacks, Breaches & Threat Activity

Threat entity extracted from intelligence sources

Frequency
6
occurrences
First Seen
January 16, 2026
Last Seen
June 30, 2026

LayerX is a organization tracked across 4 threat clusters and 6 intelligence report mentions on ThreatCluster. First observed January 16, 2026; most recent activity June 30, 2026.

Related Threat Clusters

  • Cursor Vulnerability Allows API Key Theft via Rogue Extensions

    A high-severity vulnerability in the Cursor AI development tool enables any installed extension to access sensitive API keys and session tokens without user interaction. Discovered by LayerX, this flaw has a CVSS score…

    4 articles · Updated April 29, 2026
  • BioShocking Attack Manipulates AI Browsers to Leak User Credentials

    Researchers at LayerX have identified a new vulnerability called 'BioShocking' that allows attackers to manipulate AI-powered browsers into bypassing safety protocols. This attack exploits a prompt injection technique,…

    11 articles · Updated June 30, 2026
  • Zero-Click RCE Vulnerability Discovered in Claude Desktop Extensions

    A zero-click remote code execution (RCE) vulnerability has been identified in Claude Desktop Extensions, allowing attackers to compromise systems through a single Google Calendar event. This flaw affects over 10,000…

    23 articles · Updated February 9, 2026
  • Risks of Agentic Browsers Highlighted in 2025 Review

    In 2025, Agentic Browsers, AI-powered tools that autonomously perform online tasks, became mainstream. However, their rapid adoption raised significant privacy and security concerns, particularly regarding access to…

    2 articles · Updated January 16, 2026

Recent Intelligence Reports

  • Bioshocking Ai Gaming The Ai Browser And Escaping Its Guardrails — layerxsecurity.com · June 30, 2026
  • Cursor AI Extension Access Developer Tokens Leads to Full Credential Compromise — Cybersecuritynews · April 30, 2026
  • Cursorjacking Every Cursor User Is Vulnerable To Api Key Theft By Rogue Extensions — layerxsecurity.com · April 29, 2026
  • Cursor Extension Flaw Exposes Developer API Keys — Infosecurity-Magazine · April 29, 2026
  • New Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines Fix — Infosecurity-Magazine · February 9, 2026
  • Agentic Browser Security: 2025 Year-End Review — Wiz · January 16, 2026

CVSS v3.1 Breakdown