CSOonline

Rogue MCP servers can take over Cursor’s built-in browser

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser — and potentially leverage the IDE’s privileges to perform system tasks.
Yahoo Finance

Legit Security Releases MCP Server, Adding Trust and Security to AI-Led Coding

BOSTON, June 30, 2025 /PRNewswire/ -- Legit Security, a global leader in AI-native application security posture management (ASPM), today announced a major new feature that furthers its commitment to ...
InfoWorld

Three vulnerabilities in Anthropic Git MCP Server could let attackers tamper with LLMs

Threat actors could use prompt injection attacks to take advantage of three vulnerabilities in Anthropic’s official Git MCP server and cause mayhem with AI systems. This alert comes from researchers ...

Lens Launches Built-In MCP Server Connecting AI Coding Assistants to Kubernetes

Lens by Mirantis today announced the launch of a built-in MCP (Model Context Protocol) server in Lens Desktop, the world's most widely adopted Kubernetes IDE with more than 1 mill ...
WinBuzzer

Anthropic Shows How to Scale Claude Code with Subagents and MCP

Anthropic has detailed advanced Claude Code patterns for subagent orchestration, MCP tool integrations, and context ...
TechRadar

Anthropic's official Git MCP server had some worrying security flaws - this is what happened next

Anthropic patched Git MCP flaws enabling remote code execution via tool chaining Cyata discovered CVEs; fixed in version 2025.12.18, no exploitation reported yet Claude previously manipulated in cyber ...

Datris.ai Launches the First Data Platform Built Around MCP as Open Source

Open-source platform with 30+ MCP tools lets AI agents autonomously create pipelines, query databases, search vector ...