SquareX's research reveals a concealed MCP API in the Comet browser that allows extensions to execute commands and access user devices without permission. This breach of security principles raises concerns about potential exploitation and the lack of transparency surrounding embedded extensions.

Reflectiz offers a solution that continuously monitors and manages web threats like tracking pixels and malicious scripts. It helps organizations identify vulnerabilities in their websites and implement security measures effectively. The service operates remotely, simplifying the integration process.

Moltbook, a social network for AI agents, suffered a major security breach due to a misconfigured Supabase database, exposing 1.5 million API keys and personal data of 17,000 human users. The incident highlights risks in quickly developed applications without adequate security measures.

Freedom Chat recently addressed two serious security issues that exposed users' phone numbers and PIN codes. A researcher discovered that phone numbers could be guessed and that PIN codes were visible to others in public channels, prompting a reset of all user PINs and an update to the app.

A hard-coded API key was discovered in an AI note-taking app, leading to the exposure of users' private meeting transcripts. This vulnerability raises significant concerns about data security and user privacy within the application. Immediate actions are needed to address and rectify such security flaws to protect user information.