200,000 MCP servers expose a command execution flaw that Anthropic calls a feature

OX Security confirmed arbitrary command execution on six live platforms and estimates 200,000 MCP servers are exposed. Here's ...

Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not ...

Six teams exploited Claude Code, Copilot, Codex, and Vertex AI in nine months. Every attack hit runtime credentials that IAM ...
Decrypt

OpenAI Finally Explains Why ChatGPT Wouldn't Stop Talking About Goblins

Why did OpenAI have to write "never mention goblins" into its production code on ChatGPT? The company has published a ...
Visual Studio Magazine

VS Code Curbs Token Use Ahead of Copilot's Controversial Usage-Based Billing Switch

Just two days after GitHub announced usage-based billing for Copilot, Microsoft shipped VS Code 1.118 -- under its new weekly release cadence -- with significant token efficiency improvements designed ...

Keeper Security Launches Agent Kit to Secure AI-Driven Developer Workflows

New integration enables AI coding agents to securely retrieve secrets and manage infrastructure without exposing ...
CSO Online

SAP npm package attack highlights risks in developer tools and CI/CD pipelines

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...

TestMu AI Launches Kane CLI, the New Browser Automation Tool Built for AI Agents and Developers

India], April 29: TestMu AI (formerly LambdaTest), the world's first full-stack Agentic Quality Engineering platform, today announced the launch of Kane CLI, a new browser automation tool that runs ...
TMCnet

Codezero Launches Cordon: One Command to Keep Credentials Safe Across AI Coding Agents

Cordon's credential containment layer scales across every runtime, agent, and pipeline without replacing a single tool already in your stack. Its architecture is vault-agnostic, ...
Morning Overview on MSN

Claude-powered Cursor agent wiped a company database in 9 seconds

A startup called PocketOS lost its entire production database and its backups after an AI coding agent inside the Cursor ...

TestMu AI (Formerly LambdaTest): TestMu AI Launches Kane CLI, the New Browser Automation ...

The terminal-native browser verification tool ships today with native support for Claude Code, Codex CLI, Cursor, and Gemini CLI, and it's free to startSAN FRANCISCO and NOIDA, India, April ...

32 Claude Code Hacks for Smarter Development : Stop Wasting Tokens

Discover 32 practical Claude Code hacks to optimize your AI development workflow, from basic context management to advanced ...