Virtualization Review

MCP Servers Hit by 'NeighborJack' Vulnerability and More

Model Context Protocol (MCP) servers, a relatively new idea from Anthropic to connect advanced AI systems with tools, data sources and other resources so they can act as autonomous agents, is now ...

Max-severity flaw in ChromaDB for AI apps allows server hijacking

A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to ...
Dark Reading

Nearly 2,000 MCP Servers Possess No Security Whatsoever

Approximately all of the nearly 2,000 Model Context Protocol (MCP) servers exposed to the Web today are totally bereft of authentication or access controls. Every technology experiences awkward ...
VentureBeat

MCP shipped without authentication. Clawdbot shows why that's a problem.

Model Context Protocol has a security problem that won't go away. When VentureBeat first reported on MCP's vulnerabilities last October, the data was already alarming. Pynt's research showed that ...
CSOonline

Misconfigured MCP servers expose AI agent systems to compromise

Hundreds of Model Context Protocol (MCP) servers used to link LLMs to third-party services, data sources, and tools include default configurations that could expose users to unauthorized OS command ...

Workable Launches MCP Server for AI-Powered Recruiting and HR Workflows

Workable, a leading essential HR software and talent acquisition software platform serving more than 6,200 companies across 100+ countries, announced the general availability of the Workable MCP ...