Sublime

An inspiration engine for ideas

AllPeopleCollectionsArticlesAudioBooksFilesHighlightsImagesLinksNotesTextTweetsVideosSocial

Thumbnail of www-x-com-lbeurerkellner-status-1907075048118059101-d665f91ddaa04bba

👿 MCP is all fun, until you add this one malicious MCP server and forget about it. We have discovered a critical flaw in the widely-used Model Context Protocol (MCP) that enables a new form of LLM attack we term 'Tool Poisoning'. Leaks SSH key, API keys,... See more

Luca Beurer-Kellner

x.com

On MCP security

Tuan-Anh Tran tuananh.net

Let's build an MCP server (100% local):

Akshay 🚀x.com

@levelsio @Hetzner_Online @digitalocean I wrote a script which sets up security and stuff for newly provisioned machines if anyone is interested: https://t.co/xOT9nfM2cD

Jeremy Howard x.com

next. we hijacked cursor via jira mcp by submitting a support ticket cursor harvests and exfiltrate all creds from your dev machine and then reports back to the dev that "the 2-hour downtime that affected user transactions has been... See more

Michael Bargury x.com

I just created my own MCP server! It connects to Cursor and lets it perform deep web searches, as well as RAG over a specified directory. 100% open-source code with a step-by-step guide: https://t.co/XmWjBL7aZu

Akshay 🚀x.com

Those MCP totally 10x my @cursor_ai workflow… - It reads my browser console / network log - It use Replicate to generate UI assets - It reads my supabase & figma ... Here I shared some of my fav MCP & how to install... See more

Jason Zhou x.com

An easy way to keep your VPS secure as many people in the replies said is @Tailscale Tailscale is very hard to explain and I barely understand it but it creates a private network with just you (your laptop for ex) and your servers in the cloud Nobody else can access that private... See more

@levelsio x.com

> how to secure VPS > disable ssh password login > firewall rule: allow connections only on ports 22, 80, 443 congrats, the only attack vector that's left is you

SELO x.com