CSOonline

Rogue MCP servers can take over Cursor’s built-in browser

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser — and potentially leverage the IDE’s privileges to perform system tasks.
InfoWorld

GitHub launches Remote MCP server in public preview to power AI-driven developer workflows

With secure OAuth support and real-time repo access, the tool is designed to modernize AI assistant integration in enterprise workflows. GitHub has unveiled its Remote MCP server in public preview, ...
heise online

Attack via GitHub MCP server: Access to private data

A blog post by AI security company Invariant Labs shows that the official GitHub MCP server (Model Context Protocol) can invite prompt injection attacks. In a proof of concept, an attacker used a ...

What MCP Tells Us About What Companies Will Win In The Agentic AI Security Race

MCP is the Model Context Protocol, introduced by Anthropic last year to act as the “USB-C” interface for connecting AI ...
KRON4 News

Legit Security Releases MCP Server, Adding Trust and Security to AI-Led Coding

BOSTON, June 30, 2025 /PRNewswire/ -- Legit Security, a global leader in AI-native application security posture management (ASPM), today announced a major new feature that furthers its commitment to ...
ITWire

GitHub announces agent mode and MCP support now rolling out to all Visual Studio Code users

The largest software code repository on the planet, GitHub, is making its Copilot AI co-developer a whole lot more agentic with an increased context of tools and services powered by the world's ...