Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture ...

Over 1,000 exposed ComfyUI instances exploited via unauthenticated code execution, enabling Monero mining and botnet expansion.

A design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into ...

A routine software update for Anthropic's Claude Code tool accidentally leaked its entire source code, sparking rapid community response. Within hours, a developer rewrote the tool in Python and then ...

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

A multi-tenant authentication gap in Microsoft’s AI operations agent exposed live command streams, internal reasoning, and ...

An unpatched vulnerability in Anthropic's Model Context Protocol creates a channel for attackers, forcing banks to manage the ...

Back in 2019, AI attracted attention for producing quirky, weird content. By 2022, it was producing occasionally passable ...

A design choice in the MCP SDKs allows remote code execution across the AI supply chain.

The source code of Anthropic's CLI tool Claude Code was accidentally made publicly accessible via a source map in the npm registry.

The new family of AI models can run on a smartphone, a Raspberry Pi, or a data centre, and is free to use commercially.

A team of researchers from UC Berkeley have demonstrated that eight AI agent benchmarks can be manipulated to produce ...