This week's security roundup covers the Anubis web AI firewall, AI exploit generation, a vulnerability in CodeRabbit, the potential illegality of adblocking in Germany, a Microsoft Copilot audit log issue, and a disputed Elastic EDR vulnerability.
This article details significant security vulnerabilities found in the Model Context Protocol (MCP) ecosystem, a standardized interface for AI agents. It outlines six critical attack vectors โ OAuth vulnerabilities, command injection, unrestricted network access, file system exposure, tool poisoning, and secret exposure โ and explains how Docker MCP Toolkit provides enterprise-grade protection against these threats.
This blog post details the process of reading data from an NFC passport chip using Linux, including overcoming challenges with cancelled passports and exploring the security implications.
