Critical Vulnerability in Anthropic's MCP Exposes Developer Machines to Remote Exploits

TA829 and UNK_GreenSec Share Tactics and Infrastructure in Ongoing Malware Campaigns

New Flaw in IDEs Like Visual Studio Code Lets Malicious Extensions Bypass Verified Status

A New Maturity Model for Browser Security: Closing the Last-Mile Risk

Google Patches Critical Zero-Day Flaw in Chrome’s V8 Engine After Active Exploitation

Cybersecurity researchers have discovered a critical security vulnerability in artificial intelligence (AI) company Anthropic's Model Context Protocol (MCP) Inspector project that could result in remote code execution (RCE) and allow an attacker to gain complete access to the hosts.
The vulnerability, tracked as CVE-2025-49596, carries a CVSS score of 9.4 out of a maximum of 10.0.
"This is one

Headline

Critical Vulnerability in Anthropic's MCP Exposes Developer Machines to Remote Exploits

The Hacker News: Latest News