The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

The cybersecurity company said the systemic vulnerability is baked into Anthropic's official MCP software development kit ...
The Hacker News

SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...

Anthropic won't own MCP 'design flaw' putting 200K servers at risk, researchers say

A design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into ...
Crowdfund Insider

Blockchain Analytics Firm Nansen Enhances Onchain Data Access with Pay-Per-Call Model

Nansen noted that in the ecosystem of blockchain analytics, traditional access models have long frustrated developers and ...
Prokerala

US Senate hearing warns of rising nuclear threat from China, Russia

The United States is confronting a "more dangerous era" marked by simultaneous nuclear competition with China and Russia, ...

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...
CSO Online

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...
Gadget Review on MSN

Hacker used Claude and ChatGPT to breach multiple government agencies

Between December 2025 and February 2026, a lone attacker used Anthropic's Claude and OpenAI's GPT-4.1 to breach nine Mexican ...
Infosecurity Magazine

Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads

However, in a report published on April 15, researchers at Ox Security claimed that a flaw in the protocol could enable ...
eWeek

Perplexity Launches ‘Personal Computer’ AI Assistant for Mac Users

Perplexity launches its “Personal Computer” AI assistant for Mac, enabling users to automate tasks across apps, files, and ...
How-To Geek on MSN

9 Rust apps that are faster than the Linux tools they replace

They can even replace classic Linux tools and let you play old PC games.

Do not fall for this fake Windows update support site. It’s spreading a password-stealing malware

Malwarebytes warns that a fake Microsoft support site is distributing password-stealing malware through a spoofed Windows ...