Worrying open-source security issue 'BadHost' could affect millions of AI agents, experts warn

The risk is "materially understated", researchers are saying as passwords and critical data can be exfiltrated.

Millions of AI agents imperiled by critical vulnerability in open source package

Millions of AI agents and tools around the world have been imperiled by a critical vulnerability that can allow hackers to breach the servers running them and make off with sensitive data and ...
Bleeping Computer

Max-severity flaw in ChromaDB for AI apps allows server hijacking

A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to run arbitrary code on exposed servers. The flaw is tracked as ...
GitHub

raychao-oao/infra-mcp

Infrastructure resource manager for AI agents — allocate machines, ports, and names so your AI can deploy, not just code. AI coding agents can write and test code. But when it's time to deploy, they ...
Morningstar

Mobbin Launches MCP Server, Giving AI Tools 621,500 Real App Screens to Reference

AI-generated UI all looks the same. Mobbin MCP connects AI agents to the world's largest design reference library, so every screen they generate starts with what's already working. Mobbin today ...
Microsoft

Power Apps MCP server introduces closed-loop learning for enterprise agents

Enterprise AI has made building agents faster than ever. But teaching those agents how your organization works still means feeding knowledge in as documents and custom instructions or standing up a ...
SecurityWeek

Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking

Mitiga researchers say attackers can silently redirect Claude Code MCP traffic, intercept OAuth tokens, and maintain persistent access to connected SaaS platforms. An OAuth token with wide access ...
Los Angeles Times

Optro MCP Server Launch: Revolutionizing GRC AI Interoperability

This is read by an automated voice. Please report any issues or inconsistencies here. New MCP plugin provides governed, real-time intelligence layer securely ...
Visual Studio Magazine

Building and Using MCP Servers in Visual Studio

MCP (Model Context Protocol) provides a universal standard for connecting LLMs to external data sources and tools, eliminating the need to manually copy-paste context into a chat session and enabling ...
InfoQ

Cloudflare Outlines MCP Architecture as Enterprises Confront Security and Governance Risks

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Microsoft

Custom tools and rich UI for app-based conversations are now in Public Preview

Your app’s MCP server already includes built-in app tools for querying, creating, viewing, and editing records in Microsoft Dataverse. Custom tools let you extend the app agent with your own ...