Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

Fake Gaming and AI Firms Push Malware on Cryptocurrency Users via Telegram and Discord

Four Arrested in £440M Cyber Attack on Marks & Spencer, Co-op, and Harrods

What Security Leaders Need to Know About AI Governance for SaaS

New ZuRu Malware Variant Targeting Developers via Trojanized Termius macOS App

Cybersecurity researchers have discovered a critical vulnerability in the open-source mcp-remote project that could result in the execution of arbitrary operating system (OS) commands.
The vulnerability, tracked as CVE-2025-6514, carries a CVSS score of 9.6 out of 10.0.
"The vulnerability allows attackers to trigger arbitrary OS command execution on the machine running mcp-remote when it

Headline

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

The Hacker News: Latest News