Breaking Update

Israeli Cybersecurity Firm Uncovers Critical Flaws in Anthropic’s AI Git Server

Israeli cybersecurity firm Cyata disclosed critical flaws in Anthropic's AI Git server, enabling remote code execution through prompt injection before December.

Science

Jerusalem, 20 January, 2026 (TPS-IL) — Tel Aviv-based cybersecurity firm Cyata has disclosed multiple security flaws in mcp-server-git, Anthropic’s official Git Model Context Protocol (MCP) server. The vulnerabilities, affecting versions prior to December 18, 2025, can be chained to enable remote code execution purely through prompt injection, without direct access to the target system.

Cyata cofounders Shahar Tal and Baruch Weizman warned that the flaws compromise trust boundaries in AI-assisted workflows and recommended immediate upgrades. The issues, reported to Anthropic in June 2025, were patched in December. The firm continues to lead research into AI agent security, highlighting risks in emerging agentic frameworks worldwide.

Live Breaking Updates

Breaking News Coverage

Real-time breaking news coverage from Israel and the Middle East. Stay informed with the latest developments as they happen.

Monday, 20 April 2026 Updated continuously
Crime 21 minutes ago New

The Shin Bet and the Central District Special Patrol Unit arrested two Israeli citizens, residents of Ness Ziona and Beit Oved, on suspicion of acting for Iranian intelligence elements in a joint operation by the General Security Service and the Central District Special Patrol Unit.

Shin Bet and Israel Police arrest two citizens suspected of acting for Iranian intelligence, facing serious indictments after online contact and training.

Source: Israel Police
arrestsCentral District Special Patrol UnitIsrael Police