Sneaky, Malicious MCP Server Exfiltrates Secrets via BCC

The first known malicious MCP server is an AI integration tool that automatically sends email such as those related to password resets, account confirmations, security alerts, invoices, and receipts to threat actors.