Ars Technica

Millions of AI agents imperiled by critical vulnerability in open source package

Millions of AI agents and tools around the world have been imperiled by a critical vulnerability that can allow hackers to breach the servers running them and make off with sensitive data and ...
Bleeping Computer

Max-severity flaw in ChromaDB for AI apps allows server hijacking

A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to run arbitrary code on exposed servers. The flaw is tracked as ...
CMS Wire

At Relate 2026, Zendesk Launches AI Agents Priced on Resolutions, Not Seats

Zendesk on May 19 unveiled its Autonomous Service Workforce vision at its annual Relate conference in Denver. The strategy replaces deflection-based bots with specialized AI agents operating across ...
Thomson Reuters

Thomson Reuters and Anthropic Expand Partnership to Connect Claude with CoCounsel Legal

Learn how Justly Prudent used CoCounsel and Westlaw AI to achieve exceptional return on investment (ROI) — increasing litigation capacity by 100%.
IEEE

A Performance and Scalability Evaluation of Monolithic (Django) vs. Microservice (FastAPI ...

Abstract: As few empirical performance comparisons of modern Python web frameworks exist, it is hard to choose an appropriate architecture under real I/O-bound workloads. This study compares a ...
TMCnet

Operant AI Launches Endpoint Protector: Securing Shadow AI, Coding Agents, and MCP Across ...

Across every enterprise, employees in HR, finance, legal, customer service, engineering, and operations are now interacting daily with AI assistants, coding agents, and MCP-connected tools that touch ...
VentureBeat

200,000 MCP servers expose a command execution flaw that Anthropic calls a feature

Source: VentureBeat created with Imagen. MCP's STDIO transport, the default for connecting an AI agent to a local tool, executes any operating system command it ...
The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

In yet another software supply chain attack, threat actors have managed to compromise the popular Python package Lightning to push two malicious versions to conduct credential theft. As of writing, ...
turnto10

Judge sentences man who starred in 'Dances with Wolves' to 37 years to life in prison

Lawmakers pass bill to create anti-hazing policy in Rhode Island public schools State representatives passed legislation Monday to create a statewide anti-hazing policy for Rhode Island public schools ...
InfoQ

MCP in the Java World: Bringing Architectural Strategy to LLM Integrations

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture that could pave the way for remote code execution and have a cascading ...
GitHub

Ghost Browser MCP

Undetectable browser automation for MCP-compatible AI agents. Improved fork of Stealth Browser MCP adapted as Ghost Browser MCP. Ghost Browser MCP turns a real browser into a full MCP-native research, ...