200,000 MCP servers expose a command execution flaw that Anthropic calls a feature

OX Security confirmed arbitrary command execution on six live platforms and estimates 200,000 MCP servers are exposed. Here's ...
SecurityWeek

Cisco Releases Open Source Tool for AI Model Provenance

The new kit aims to address risks related to poisoned models, regulatory issues, supply chain integrity, and incident ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...
The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
How-To Geek on MSN

The tiny open-source apps that somehow became essential (and you've probably never heard of ...

Stop using bloated tools—these 5 tiny open-source apps quietly solve problems nobody else bothers to fix and do more with ...
MUO on MSN

I switched to Linux for local LLMs and setup that took hours on Windows took minutes

What looks simple on Windows quietly turns into hours of troubleshooting.

Runpod Launches Flash: The Fastest Way to Deploy AI Inference

Runpod Flash is an open-source Python SDK that removes the infrastructure overhead between writing AI code and running it in ...
iAfrica

Egyptian Startup Releases Open-Source AI Model That Outperforms Larger Global Rivals on Key ...

A Cairo-based artificial intelligence startup has released Horus 1.0-4B, a fully open-source large language model built in Egypt that outperforms several ...
Cybernews

One tiny exploit gives full Linux access: all kernels since 2017 are vulnerable

The critical "Copy Fail" bug (CVE-2026-31431) affects all Linux kernels since 2017, allowing unprivileged local users to gain ...

Why OpenAI's 'goblin' problem matters — and how you can release the goblins on your own

If OpenAI can accidentally train its flagship model to obsess over goblins, what other more subtle and potentially harmful ...

Runpod launches Flash to bring AI inference to developers without infra overhead

Developer-centered artificial intelligence cloud provider Runpod Inc. today announced the launch of Flash, a software ...

Zed team releases version 1.0 of Rust-built editor: Traditional editor and AI tool

Team wins praise for adding 'disable all AI features' setting for devs who want a code editor to be only a code editor ...