14 points | by ghuntley 21 hours ago
4 comments
> PSA: Declare an incident if someone on your team installed the postmark-mcp on their machine.
> All your emails had a secret BCC added to them since version 16.
https://www.koi.security/blog/postmark-mcp-npm-malicious-bac...
> [...] and published it to npm under the same name.
We have seen thes so many times, and still do not want to do _anything_ against this attack vector. So sad to look at.
Id say LLMs are the generic attack vector.
No, npm allpwing account takeovers and re-using package names like it's sharing a sandwich, that's the issue. This problem exists longer than the word "LLM".
> PSA: Declare an incident if someone on your team installed the postmark-mcp on their machine.
> All your emails had a secret BCC added to them since version 16.
https://www.koi.security/blog/postmark-mcp-npm-malicious-bac...
> [...] and published it to npm under the same name.
We have seen thes so many times, and still do not want to do _anything_ against this attack vector. So sad to look at.
Id say LLMs are the generic attack vector.
No, npm allpwing account takeovers and re-using package names like it's sharing a sandwich, that's the issue. This problem exists longer than the word "LLM".