Knostic found 1,862 MCP servers exposed with zero authentication. Here are five actions CISOs should take now.

The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade ...

Three vulnerabilities in Anthropic’s MCP Git server allow prompt injection attacks that can read or delete files and, in some ...

Familiar bugs in a popular open source framework for AI chatbots could give attackers dangerous powers in the cloud.

Microsoft is testing a hidden 'Chat with Copilot' button in Windows 11 File Explorer, signaling deeper AI search and a coming ...

Researchers with Cyata and BlueRock uncovered vulnerabilities in MCP servers from Anthropic and Microsoft, feeding ongoing security worries about MCP and other agentic AI tools and their dual natures ...

The Python-based information stealer SolyxImmortal uses legitimate APIs and libraries for stealthy data gathering and ...

FileWizard lets you convert documents, extract text, transcribe audio and manage files on your own computer without uploading ...

Update Chainlit to the latest version ASAP Two "easy-to-exploit" vulnerabilities in the popular open-source AI framework ...

A malicious extension impersonating an ad blocker forces repeated browser crashes before pushing victims to run ...

Radware’s ZombieAgent technique shows how prompt injection in ChatGPT apps and Memory could enable stealthy data theft through connected services.