Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
InfoQ

Azure Functions Ships Serverless Agents Runtime at Build 2026

Azure Functions shipped a serverless agents runtime in public preview at Build 2026. Agents are defined in .agent.md markdown ...
Microsoft

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...
Tech Times

Stack Overflow for Agents Enters Beta: Human Reputation Anchors Machine-Speed Corpus

Stack Overflow for Agents, now in public beta, lets AI coding agents query and write back to a verified knowledge corpus — ...
GitHub

GoodWe Inverter MCP Server

MCP server for monitoring and controlling GoodWe solar inverters over the local network. Built on the goodwe library and the Model Context Protocol Python SDK. Based on the Home Assistant GoodWe ...
CSOonline

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configs open servers to possible remote code execution, as evidenced by several commercial services and open-source projects. AI agent building tools enable users to configure ...
CSOonline

Prompt hijacking puts MCP-based AI workflows at risk

Model context protocol (MCP) gives IT teams a standardized way to connect large language models (LLMs) to tools and data sources when developing AI-based workflows. But security researchers warn that ...