The Hacker News

Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution

Three vulnerabilities in Anthropic’s MCP Git server allow prompt injection attacks that can read or delete files and, in some ...

Anthropic’s official Git MCP server hit by chained flaws that enable file access and code execution

Anthropic’s official Git MCP server hit by chained flaws that enable file access and code execution - SiliconANGLE ...

Trump administration admits DOGE accessed personal Social Security data

A DOGE employee signed an agreement to share Social Security data with the aim of overturning election results in certain ...
Dark Reading

Microsoft & Anthropic MCP Servers At Risk of RCE, Cloud Takeovers

Researchers found the popular model context protocol (MCP) servers, which are integral components of AI services, carry ...
Infosecurity Magazine

Prompt Injection Bugs Found in Official Anthropic Git MCP Server

MCP is an open standard introduced by Anthropic in November 2024 to allow AI assistants to interact with tools such as ...

Trump administration admits Elon Musk's Doge accessed and shared Social Security data

This admission, made by the Justice Department in a filing on Friday, January 16, 2026, confirms long-standing allegations ...
SecurityWeek

Chainlit Vulnerabilities May Leak Sensitive Information

Vulnerabilities in Chainlit could be exploited without user interaction to exfiltrate environment variables, credentials, ...
Infosecurity Magazine

Chainlit Security Flaws Highlight Infrastructure Risks in AI Apps

Chainlit is widely used to build conversational AI applications and integrates with popular orchestration and model platforms ...

DOGE may have misused Social Security data

ELIZABETH SHAPIRO, a top Justice Department official, said SSA referred both DOGE employees for potential violations of the ...
The Hacker News

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...

Trump DOJ admits DOGE Social Security staff worked with political group trying to ‘overturn election results’

At least one staffer inside Elon Musk-led wrecking ball signed off on ‘voter data agreement’ with right-wing activist group ...

Trump admin admits DOGE employees had access to off-limits Social Security data

Department of Government Efficiency (DOGE) staffers working at the Social Security Administration (SSA) broke protocols, had ...