THREATOPS
THREAT OPSThreat News › Hijacking Windsurf: How Prompt Injection Leaks Developer Secrets

Hijacking Windsurf: How Prompt Injection Leaks Developer Secrets

lowembracetheredPublished 2025-08-21

<a id="top_ref"></a>

<p>This is the first post in a series exploring security vulnerabilities in Windsurf. If you are unfamiliar with Windsurf, it is a fork of VS Code and the coding agent is called <a href="https://windsurf.com/cascade">Windsurf Cascade</a>.</p> <p>The attack vectors we will explore today allow an adversary during an indirect prompt injection to exfiltrate data from the develope

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://embracethered.com/blog/posts/2025/windsurf-data-exfiltration-vulnerabilities/