npm update, Cursor Autorun flaw details, Microsoft probe over Ascension hack?
Sep 11, 2025•8 min
Listen to this episode in Metacast mobile app
Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more
Episode description
The npm incident: nothing to fret about? Cursor Autorun flaw lets repositories execute code without consent
Senator Wyden urges FTC to probe Microsoft over Ascension hack
Huge thanks to our sponsor, Vanta
Do you know the status of your compliance controls right now? Like...right now?
We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks. But more than 9,000 companies have continuous visibility into their controls with Vanta.
Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001. They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI.
Now that's…a new way to GRC.
Get started at Vanta.com/headlines.
For the best experience, listen in Metacast app for iOS or Android