Sublime

An inspiration engine for ideas

AllPeopleCollectionsArticlesAudioBooksFilesHighlightsImagesLinksNotesTextTweetsVideosSocial

Thumbnail of www-x-com-lbeurerkellner-status-1907075048118059101-d665f91ddaa04bba

👿 MCP is all fun, until you add this one malicious MCP server and forget about it. We have discovered a critical flaw in the widely-used Model Context Protocol (MCP) that enables a new form of LLM attack we term 'Tool Poisoning'. Leaks SSH key, API keys, etc. De... See more

Luca Beurer-Kellner

x.com

On MCP security

Tuan-Anh Tran tuananh.net

I hacked a popular vibe coding platform with a simple, straight-forward logic flaw - allowing access to private applications . Here’s how I did it 🧵 https://t.co/kyXoJHKsuj

Nagli

x.com

Let's build an MCP server (100% local):

Akshay 🚀x.com

@levelsio @Hetzner_Online @digitalocean I wrote a script which sets up security and stuff for newly provisioned machines if anyone is interested: https://t.co/xOT9nfM2cD

Jeremy Howard x.com

Thumbnail of www-x-com-kuberdenis-status-1919838504688689572-bcd4c746875743e1

BOTTING: How I managed to get access to the private X API (API V2) entirely for free & a short dive in Web Development A thread (0/12) https://t.co/HLEqzRTD55

denislav

x.com

Let's build an MCP server (100% locally):

Avi Chawla x.com

next. we hijacked cursor via jira mcp by submitting a support ticket cursor harvests and exfiltrate all creds from your dev machine and then reports back to the dev that "the 2-hour downtime that affected user transactions has been resolved" #DEFCO... See more

Michael Bargury x.com

I just created my own MCP server! It connects to Cursor and lets it perform deep web searches, as well as RAG over a specified directory. 100% open-source code with a step-by-step guide: https://t.co/XmWjBL7aZu

Akshay 🚀x.com