200,000 MCP servers expose a command execution flaw that Anthropic calls a feature

OX Security confirmed arbitrary command execution on six live platforms and estimates 200,000 MCP servers are exposed. Here's ...
MacRumors

OpenAI Codex Update Adds Computer Use, Image Generation, and Memory on Mac

OpenAI is making several updates to its Codex AI coding agent. Codex is now able to operate desktop Mac apps with its own cursor, seeing what's on the screen, clicking, and typing to complete tasks.
VentureBeat

Microsoft patched a Copilot Studio prompt injection. The data exfiltrated anyway

Microsoft assigned CVE-2026-21520, a CVSS 7.5 indirect prompt injection vulnerability, to Copilot Studio. Capsule Security discovered the flaw, coordinated disclosure with Microsoft, and the patch was ...