The first known malicious MCP server is an AI integration tool that automatically sends email such as those related to password resets, account confirmations, security alerts, invoices, and receipts to threat actors.
First seen on darkreading.com
Jump to article: www.darkreading.com/application-security/malicious-mcp-server-exfiltrates-secrets-bcc
