Dark Reading

Critical MCP Integration Flaw Puts NGINX at Risk

Attackers can abuse the near-maximum severity flaw in nginx-ui to restart, create, modify, and delete NGINX configuration ...

Sniffnet 1.5: Which program is phoning home?

The open-source network monitor Sniffnet now assigns traffic to individual programs. Version 1.5.0 also brings blacklists and ...

Critical Nginx UI auth bypass flaw now actively exploited in the wild

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full ...

Visual Studio 18.5 lands with AI debugging at a price, devs still feeling blue

Visual Studio 2026 18.5 arrives with two headline changes – a smarter code suggestion system and an AI-powered debugger. Yet ...
The Hacker News

Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks

PHANTOMPULSE spreads via Obsidian plugin abuse in REF6598 campaign, targeting finance and crypto users, bypassing AV controls ...
CSO Online

Critical nginx UI tool vulnerability opens web servers to full compromise

The vulnerability, with a CVSS score of 9.8, relates to the software’s support for Model Context Protocol (MCP) servers, ...

In the wake of Claude Code's source code leak, 5 actions enterprise security leaders should take now

Gartner issued a same-day advisory after Anthropic leaked Claude Code's full architecture. CrowdStrike CTO Elia Zaitsev and Enkrypt AI CSO Merritt Baer weigh in on agent permissions and derived IP ...

Thermo Fisher Scientific Launches Applied Biosystemsâ„¢ PowerFlexâ„¢ Thermal Cycler to Advance PCR Flexibility and Productivity

Thermo Fisher Scientific Inc., the world leader in serving science, today announced the Applied Biosystemsâ„¢ PowerFlexâ„¢ ...
The Hacker News

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

CVE-2026-33032 exposes nginx-ui to unauthenticated takeover via MCP endpoint, impacting 2,600+ instances with active ...
XDA Developers on MSN

After two months of Open WebUI updates, I'd pick it over ChatGPT's interface for local LLMs

Open WebUI has been getting some great updates, and it's a lot better than ChatGPT's web interface at this point.

Data collection in Claude Code plugin raises privacy concerns for developers

Developers dig into Vercel plugin for Claude code and uncover unexpected telemetry flows running silently across unrelated ...

Facilis Showcases New HUB performance, Security, and Protection; FastCache Accelerator, and FastTracker MAM at NAB Show Las Vegas 2026

In partnership with ATTO Technology, Facilis will support next--generation Thunderbolt 5 adapters for high--speed media transfers. The ATTO ThunderLink TLFC--5642 (64Gb Fibre Channel) and ThunderLink ...