The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture ...
CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...

Forget Python Or Java: What You’re Speaking Is Code

Scripting languages like Python and JavaScript quickly gained popularity and pushed further toward human readability. They ...
InfoQ

Google ADK for Java 1.0 Introduces New App and Plugin Architecture, External Tools Support ...

Google's Agent Development Kit for Java reached 1.0, introducing integrations with new external tools, a new app and plugin architecture, advanced context engineering, human-in-the-loop workflows, and ...
CSO Online

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

CISA flags Apache ActiveMQ flaw as actively exploited in attacks

CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this ...

Experts flag potentially critical security issues at heart of Anthropic MCP

Anthropic sees no issues - and says the tools are working as intended.

Azul Delivers Strong FY26 Momentum Fueled by Java Platform Innovation, Channel Expansion ...

Market demand for Azul driven by enterprise imperatives for performance, cloud cost optimisation, application modernisation and greater control over Java licensing costs Azul, the trusted leader in ...

Anthropic won't own MCP 'design flaw' putting 200K servers at risk, researchers say

A design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into ...

The Archaeology Of Code: Why Intent Recovery Beats Translation

As agentic systems mature toward continuous, autonomous refactoring, the concept of "legacy code" may eventually disappear ...

The 'Learn to Code' era is over — as an AI editor, here's the 'Intent Architecture ...

Coding is becoming a background task. Discover why the "syntax barrier" has vanished and the three orchestration skills I’m ...
Infosecurity Magazine

Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads

However, in a report published on April 15, researchers at Ox Security claimed that a flaw in the protocol could enable ...