Fake CVE exploit repos pull frint and skytext packages to steal researcher credentials, with servers still live as of July 1.
Apple is introducing a new MCP server for Safari that lets coding agents inspect websites directly in the browser. Here are the details.