The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

The cybersecurity company said the systemic vulnerability is baked into Anthropic's official MCP software development kit ...
Biometric Update

Idenfy launches MCP server to bring live API docs into AI assistants

Model context protocol server lets AI assistant tools like ChatGPT and Claude pull current API data to generate accurate code ...
Crowdfund Insider

Alpaca AI MCP Server Now Enables Improved Connectivity between AI Tools and Trading Infrastructure

Alpaca rolled out version 2 of its MCP Server, marking overhaul of platform that connects artificial intelligence assistants ...
CSO Online

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...
SecurityWeek

‘By Design’ Flaw in MCP Could Enable Widespread AI Supply Chain Attacks

A ‘by design’ flaw in Anthropic’s Model Context Protocol (MCP) could allow silent command execution and full system ...
XDA Developers on MSN

I started using my local LLMs and an MCP server to manage my NAS – it's surprisingly powerful (and safe)

The official TrueNAS MCP server meshes well with my setup ...
Infosecurity Magazine

Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads

However, in a report published on April 15, researchers at Ox Security claimed that a flaw in the protocol could enable ...
The Hacker News

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

CVE-2026-33032 exposes nginx-ui to unauthenticated takeover via MCP endpoint, impacting 2,600+ instances with active ...