A design choice in the MCP SDKs allows remote code execution across the AI supply chain.

Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture ...

Learn how to secure Model Context Protocol proxies with post-quantum cryptographic agility. Protect AI infrastructure against future quantum threats with hybrid encryption.

Google launches AI agent suite at Cloud Next 2026 with Workspace Studio, A2A protocol at 150 orgs, and Project Mariner. The pitch: only Google owns the full stack.

Anthropic sees no issues - and says the tools are working as intended.

An unpatched vulnerability in Anthropic's Model Context Protocol creates a channel for attackers, forcing banks to manage the ...

A design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into ...

However, in a report published on April 15, researchers at Ox Security claimed that a flaw in the protocol could enable ...

Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol ...

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...