LayerX is a organization tracked across 4 threat clusters and 6 intelligence report mentions on ThreatCluster. First observed January 16, 2026; most recent activity June 30, 2026.
A high-severity vulnerability in the Cursor AI development tool enables any installed extension to access sensitive API keys and session tokens without user interaction. Discovered by LayerX, this flaw has a CVSS score…
Researchers at LayerX have identified a new vulnerability called 'BioShocking' that allows attackers to manipulate AI-powered browsers into bypassing safety protocols. This attack exploits a prompt injection technique,…
A zero-click remote code execution (RCE) vulnerability has been identified in Claude Desktop Extensions, allowing attackers to compromise systems through a single Google Calendar event. This flaw affects over 10,000…
In 2025, Agentic Browsers, AI-powered tools that autonomously perform online tasks, became mainstream. However, their rapid adoption raised significant privacy and security concerns, particularly regarding access to…