Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

MCP Market

Researchers flag MCP design flaw that could enable remote code execution

News, Research, Risk, Vulnerabilities

April 21, 2026

Researchers said a design flaw in Anthropic’s Model Context Protocol could allow remote code execution across thousands of servers and packages, exposing sensitive data and widening AI supply chain risk.
SmartLoader campaign trojanized Oura MCP server to deliver StealC infostealer

Cybercrime, News, Research, Vendors

February 17, 2026

A SmartLoader campaign trojanized an Oura MCP server to deliver the StealC infostealer using fake GitHub accounts. The trojanized server remains listed on the MCP registry.

About
Editorial Policy
Privacy
Contact