MCP Remote Code Execution: Critical 2026 Warning
MCP remote code execution stopped being a theoretical risk the moment Microsoft security researchers proved it works through nothing more exotic than a web page. The research, dubbed AutoJack, demonstrates that a malicious web page rendered by an AI browsing agent can reach local MCP services and execute arbitrary processes on the host machine. Microsoft’s … Read more