Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...

Critical Nginx UI auth bypass flaw now actively exploited in the wild

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full ...
SecurityWeek

‘By Design’ Flaw in MCP Could Enable Widespread AI Supply Chain Attacks

A ‘by design’ flaw in Anthropic’s Model Context Protocol (MCP) could allow silent command execution and full system ...