MCP security crisis — 200,000 servers exposed to arbitrary command execution
200,000+ MCP servers allow OS command execution via unsanitized STDIO; 36.7% are SSRF-vulnerable. CoSAI published a 12-category MCP threat taxonomy.
Tags · #research
Anthropic ran a closed test marketplace for agent-on-agent commerce
Anthropic ran a closed agent-on-agent marketplace test: 69 employees, four configs, 186 deals, ~$4K — with measurable model-quality asymmetries.
Anthropic previews Mythos + Project Glasswing — autonomous cyber capability
Anthropic Red previewed Mythos, a frontier model that autonomously chains zero-days and writes exploits. Project Glasswing applies it defensively.