The Hacker News

Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution

Three vulnerabilities in Anthropic’s MCP Git server allow prompt injection attacks that can read or delete files and, in some ...

Anthropic’s official Git MCP server hit by chained flaws that enable file access and code execution

Anthropic’s official Git MCP server hit by chained flaws that enable file access and code execution - SiliconANGLE ...
CSO Online

Flaws in Chainlit AI dev framework expose servers to compromise

Security researchers uncovered two vulnerabilities in the popular Python-based AI app building tool that could allow ...

Trump administration admits DOGE accessed personal Social Security data

A DOGE employee signed an agreement to share Social Security data with the aim of overturning election results in certain ...

Anthropic quietly fixed flaws in its Git MCP server that allowed for remote code execution

Anthropic has fixed three bugs in its official Git MCP server that researchers say can be chained with other MCP tools to ...
Dark Reading

Microsoft & Anthropic MCP Servers At Risk of RCE, Cloud Takeovers

Researchers found the popular model context protocol (MCP) servers, which are integral components of AI services, carry ...
Infosecurity Magazine

Prompt Injection Bugs Found in Official Anthropic Git MCP Server

MCP is an open standard introduced by Anthropic in November 2024 to allow AI assistants to interact with tools such as ...

Trump administration admits Elon Musk's Doge accessed and shared Social Security data

This admission, made by the Justice Department in a filing on Friday, January 16, 2026, confirms long-standing allegations ...
Infosecurity Magazine

Chainlit Security Flaws Highlight Infrastructure Risks in AI Apps

Chainlit is widely used to build conversational AI applications and integrates with popular orchestration and model platforms ...

DOGE may have misused Social Security data

ELIZABETH SHAPIRO, a top Justice Department official, said SSA referred both DOGE employees for potential violations of the ...
The Hacker News

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...

Trump DOJ admits DOGE Social Security staff worked with political group trying to ‘overturn election results’

At least one staffer inside Elon Musk-led wrecking ball signed off on ‘voter data agreement’ with right-wing activist group ...