Hackers Exploit 'Rules File Backdoor' to Inject Malicious Code via AI Code Editors

Thursday, 20 March, 2025

Hackers Exploit 'Rules File Backdoor' to Inject Malicious Code via AI Code Editors

Cybersecurity researchers have uncovered a novel supply chain attack, termed the "Rules File Backdoor," targeting AI-powered code editors like GitHub Copilot and Cursor. By embedding concealed prompts within benign rules files, attackers can manipulate these AI tools to generate code laced with security vulnerabilities or backdoors. This method leverages hidden Unicode characters and sophisticated evasion techniques, allowing malicious code to propagate silently across projects.

Read full story at The Hacker News

Tags:hackers supply chain malicious

Categories

Hackers Exploit 'Rules File Backdoor' to Inject Malicious Code via AI Code Editors

Also Read

Reid Hoffman’s Advice: How to Make AI Useful for You

Chinese Tech Giant Cuts AI Costs Using Domestic Chips

Paytm Payments Services Shifts to Direct Transaction Processing, Ends Third-Party Collaborations

China’s PLA Deploys AI Tool ‘DeepSeek’ in Military Hospitals & Operations

Google Expands Gemini AI with Live Video, Screen Sharing, and Astra Features

Reliance Jio Eyes Investment in Tripura's IT Sector, Says Chief Minister Manik Saha

Meta Settles UK Lawsuit, Agrees Not to Track Plaintiff’s Ads Data

Lyft Partners with May Mobility to Launch Robotaxi Service in Atlanta

India’s Roll-Up E-Commerce Model Faces Setbacks as Founders Reclaim Brands

Subscribe To Our Newsletter.