12:00
2026-06-30
dev.to
ai-agents
The first malicious MCP server was one line of code: the postmark-mcp rug pull
Security researchers at Koi Security discovered the first in-the-wild malicious MCP server, an npm package called postmark-mcp that silently exfiltrated emails after a one-line change in version 1.0.1โฆ