The Hacker News

Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now

Cybersecurity company Imperva, which discovered and reported the problem in July 2025, described CVE-2025-53967 as a "design ...
CSO Online

GitHub Copilot prompt injection flaw leaked sensitive data from private repos

Hidden comments in pull requests analyzed by Copilot Chat leaked AWS keys from users’ private repositories, demonstrating yet ...

MCP stacks have a 92% exploit probability: How 10 plugins became enterprise security's biggest blind spot

Ten MCP plugins are all attackers need to achieve a 92% exploit success rate, putting thousands of enterprise AI servers at immediate risk. CISOs and SOC leaders need to secure MCP now, before trivial ...