😈 BEWARE: Claude 4 + GitHub MCP will leak your private GitHub repositories, no questions asked. We discovered a new attack on agents using GitHub’s official MCP server, which can be exploited by attackers to access your private repositories. creds to @marco_milanta (1/n) 👇
Invariant researchers have uncovered a new security flaw in GitHub’s official MCP server, enabling attackers to exfiltrate private repository data. The toxic flow was identified during an automated scan using Invariant's security stack. Learn more: invariantlabs.ai/blog/mcp-githu…
🔵 New release: Invariant MCP-scan v0.2 is here! Track, audit & secure all local MCP traffic with static+dynamic scanning, local guardrails, and customizable policies. Ideal for orgs prioritizing agent security & compliance. Docs: explorer.invariantlabs.ai/docs/mcp-scan/ #AI #DevSecOps
We are proud to share that AgentDojo, an Invariant research project done with @ETH, has won the first price of the @ai_risks SafeBench competition. We truly appreciate this recognition from the community. Learn More: invariantlabs.ai/blog/agentdojo…
MCP is the hottest thing in AI right now, but people aren't really talking about the security implications... I covered a recently discovered exploit and mitigations on the @thenewstack today: thenewstack.io/building-with-…
We recently shipped a lot of updates to mcp-scan: - whitelisting of tools - Improvements to the server (reducing false-positives, improving detection) - run via npm/npx Much more coming soon! github.com/invariantlabs-… #mcp
🔴🌎 New MCP attack on BrowserMCP We show an MCP attack on the popular BrowserMCP. It allows attackers to read arbitrary files from your machine, when the agent visits the website below. Try yourself with: access.invariantlabs.ai No bad MCP server needed. (1/n)👇
United States 趨勢
- 1. D’Angelo 254K posts
- 2. Brown Sugar 19.2K posts
- 3. #PortfolioDay 13.6K posts
- 4. Drew Struzan 23.9K posts
- 5. Pentagon 104K posts
- 6. Young Republicans 9,528 posts
- 7. Black Messiah 9,713 posts
- 8. Voodoo 19.6K posts
- 9. Politico 147K posts
- 10. Scream 5 N/A
- 11. How Does It Feel 8,417 posts
- 12. Venables 3,172 posts
- 13. Baldwin 19.4K posts
- 14. Merino 9,433 posts
- 15. Happy Birthday Charlie 138K posts
- 16. Soybeans 3,663 posts
- 17. VPNs 1,293 posts
- 18. Powell 42K posts
- 19. First Presidency 2,011 posts
- 20. World Cup 307K posts
Something went wrong.
Something went wrong.