The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
GitHub

jsonrpc-websocket: a compact JSON-RPC websocket client library for asyncio

Minimum required version of aiohttp is now 3.0. Support for Python 3.4 is now dropped. @gciotta for creating the base project jsonrpc-requests. @mbroadst for ...
marktechpost

Google Colab Now Has an Open-Source MCP (Model Context Protocol) Server: Use Colab Runtimes with GPUs from Any Local AI Agent

Google has officially released the Colab MCP Server, an implementation of the Model Context Protocol (MCP) that enables AI agents to interact directly with the Google Colab environment. This ...
VentureBeat

Google Chrome ships WebMCP in early preview, turning every website into a structured tool for AI agents

When an AI agent visits a website, it’s essentially a tourist who doesn’t speak the local language. Whether built on LangChain, Claude Code, or the increasingly popular OpenClaw framework, the agent ...
SDxCentral

What is the Model Context Protocol (MCP)? The definitive guide to AI’s new integration standard

Making inherently probabilistic and isolated large language models (LLMs) work in a context-aware, deterministic way to take real-world decisions and actions has proven to be a hard problem. As we ...
makeuseof

MCP is the tech term you'll be hearing all year — here's what it means

Yadullah Abidi is a Computer Science graduate from the University of Delhi and holds a postgraduate degree in Journalism from the Asian College of Journalism, Chennai. With over a decade of experience ...
GitHub

jsonrpc-async: a compact JSON-RPC client library for asyncio

This is a compact and simple JSON-RPC client implementation for asyncio python code. This code is forked from https://github.com/gciotta/jsonrpc-requests It is ...
theregister

Everything you need to get up and running with MCP – Anthropic's USB-C for AI

HANDS ON Getting large language models to actually do something useful usually means wiring them up to external data, tools, or APIs. The trouble is, there's no standard way to do that - yet.
LinkedIn

Comparing OpenAI’s new Response API + Agents SDK with Anthropic’s Model Context Protocol (MCP)

Below is a deep analysis comparing OpenAI’s new Response API + Agents SDK with Anthropic’s Model Context Protocol (MCP). This report examines their design philosophies, technical features, developer ...
InfoQ

Anthropic Publishes Model Context Protocol Specification for LLM App Integration

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Birgitta Böckeler, Distinguished Engineer at ...
The Hacker News

XML-RPC npm Library Turns Malicious, Steals Data, Deploys Crypto Miner

Cybersecurity researchers have discovered a software supply chain attack that has remained active for over a year on the npm package registry by starting off as an innocuous library and later adding ...