The Hacker News

SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...
SDxCentral

PNY powers the AI-ready enterprise with the new NVIDIA RTX PRO 4500 Blackwell Server Edition

Flexible, power-efficient AI acceleration enables enterprises to deploy advanced workloads without disrupting existing data ...
The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

The cybersecurity company said the systemic vulnerability is baked into Anthropic's official MCP software development kit ...

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...

Only with certificate: Long-Term Support for OpenSearch

OpenSearch is now getting LTS versions. To prevent vendor lock-in, certified third parties are responsible for the provision.

Anthropic won't own MCP 'design flaw' putting 200K servers at risk, researchers say

A design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into ...

Millions of hotel goers may have been exposed after hackers steal data and leak it on Telegram

Top photo ID apps leak user data - over 150,000 thought to have been affected; Huge data leak of 149 million credentials ...
InfoWorld

Tap into the AI APIs of Google Chrome and Microsoft Edge

The Chrome and Edge browsers have built-in APIs for language detection, translation, summarization, and more, using locally ...
Crowdfund Insider

Blockchain Analytics Firm Nansen Enhances Onchain Data Access with Pay-Per-Call Model

Nansen noted that in the ecosystem of blockchain analytics, traditional access models have long frustrated developers and ...

Cloudflare And OpenAI Launch Agent Cloud For Enterprises

Cloudflare expands Agent Cloud with OpenAI GPT-5.4 integration and isolate-based Dynamic Workers, challenging containers as ...
CSO Online

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...