200,000 MCP servers expose a command execution flaw that Anthropic calls a feature

OX Security confirmed arbitrary command execution on six live platforms and estimates 200,000 MCP servers are exposed. Here's ...
The Hacker News

New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions

CVE-2026-31431 CVSS 7.8 flaw since 2017 enables root via 732-byte exploit, impacting major Linux distributions.

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

Runpod Launches Flash: The Fastest Way to Deploy AI Inference

Runpod Flash is an open-source Python SDK that removes the infrastructure overhead between writing AI code and running it in ...

Anaconda Releases Desktop in Public Beta, Unifying AI Development Workflow

Anaconda, an infrastructure provider for the Python community, has released Anaconda Desktop in public beta, designed for AI ...
Security Boulevard

Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude Code to Compromise the CAP Framework

Home » Security Bloggers Network » Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude Code to Compromise the CAP Framework The post Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude ...

A founder says Cursor's AI agent deleted his startup's database, causing chaos for customers

The founder of PocketOS said that a Cursor AI agent running on Anthropic's Claude Opus model was behind the "destructive ...

‘I violated every principle I was given’: An AI agent deleted a software company’s entire database. It may not be the AI’s fault

In a viral X post, PocketOS founder Jer Crane claims a Claude-powered version of Cursor admitted to wiping all his data in ...
eWeek

Claude Wiped a Database in 9 Seconds After ‘Guessing Instead Of Verifying’

A PocketOS founder says a Claude-powered Cursor agent deleted a live database and backups in nine seconds after guessing ...
Inside EVs

All The Non-Tesla EVs That Can Use Tesla Superchargers In 2026 (Updated)

The Tesla Supercharger network is no longer exclusive to Tesla EV owners, whether you like it or not. It all started at the end of February 2024, when Ford EVs gained access to what is generally known ...