New MCP specification kills old risks but opens fresh attack surfaces, Akamai finds

A major overhaul of the Model Context Protocol due next month removes several longstanding protocol-level security risks but ...

Exclusive: LucidLink launches MCP server to give AI agents shared access to distributed files

LucidLink Corp., the maker of a cloud network-attached storage system based on object storage technology, today extended its ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
GitHub

v-bodnar/ocpp-server

Application has two modes GUI/command line Allows communication with clients using OCPP protocol (Supports SSL/TLS) Allows dynamic change of OCPP server behavior Exposes REST API to control OCPP ...
marktechpost

Alibaba Releases OpenSandbox to Provide Software Developers with a Unified, Secure, and Scalable API for Autonomous AI Agent Execution

Alibaba has released OpenSandbox, an open-source tool designed to provide AI agents with secure, isolated environments for code execution, web browsing, and model training. Released under the Apache 2 ...
The Hacker News

Trojanized Gaming Tools Spread Java-Based RAT via Browser and Chat Platforms

Threat actors are luring unsuspecting users into running trojanized gaming utilities that are distributed via browsers and chat platforms to distribute a remote access trojan (RAT). "A malicious ...
IEEE

Privacy-Preserving Linear Regression on Distributed Data by Homomorphic Encryption and Data Masking

Abstract: Linear regression is a basic method that models the relationship between an outcome value and some explanatory values using a linear function. Traditionally, this method is conducted on a ...
GitHub

ZK is a highly productive Java framework for building amazing enterprise web and mobile applications.

Backend-heavy Java projects with minimal frontend skills Enterprise apps requiring long-term stability Data-intensive UIs with complex interaction Quick prototypes ...
Uber

App Development Process (2025)

Starting out on the app development journey can reveal an overwhelming number of development options. But with the right app development process to hand, it’s much easier. In this research piece, ...
Dark Reading

XOR Marks the Flaw in SAP GUI

SAP has patched a couple of vulnerabilities in its graphical user interface (SAP GUI) input history feature that give attackers a way to potentially access sensitive data stored locally on user ...
WeLiveSecurity

Unveiling WolfsBane: Gelsemium’s Linux counterpart to Gelsevirine

ESET researchers have identified multiple samples of Linux backdoor, which we have named WolfsBane, that we attribute with high confidence to the Gelsemium advanced persistent threat (APT) group. This ...