MCP shipped without authentication. Clawdbot shows why that's a problem.

Knostic found 1,862 MCP servers exposed with zero authentication. Here are five actions CISOs should take now.
The Hacker News

Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas

A critical Grist-Core flaw (CVE-2026-24002, CVSS 9.1) allows remote code execution through malicious formulas when Pyodide ...
eWeek

Ranked: 8 Things You Should Never Paste Into an AI Chatbot

Copy-pasting into chatbots feels harmless, but it can leak IDs, bank details, health records, work files, and login secrets. Here are the top 8 to avoid.
CCN on MSN

Binance logins among 149 million credentials exposed in infostealer malware data dump — here’s what you should know

This was not a single company breach, the credentials were harvested from millions of infected user devices using infostealer malware. Binance appeared in the dataset ...

Apple, Google host dozens of AI ‘nudify’ apps like Grok, report finds

A tech watchdog organization found 55 nudify apps on Google Play and 47 in the Apple App Store.
Security Boulevard

Clawdbot-Style Agentic Assistants: What Your SOC Should Monitor, Triage, and Contain

What SOC teams need to monitor, triage, and contain when clawdbot-like agentic AI assistants. Includes detection signals, triage questions, and a containment playbook. The post Clawdbot-Style Agentic ...