The Hacker News

SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer

SmartLoader campaign spreading StealC via a trojanized Oura MCP server using fake GitHub forks to steal credentials and crypto funds.
InfoWorld

Five MCP servers to rule the cloud

The hyperscalers were quick to support AI agents and the Model Context Protocol. Use these official MCP servers from the major cloud providers to automate your cloud operations.

MCP shipped without authentication. Clawdbot shows why that's a problem.

Knostic found 1,862 MCP servers exposed with zero authentication. Here are five actions CISOs should take now.
heise online

MCP Registry launched: Public MCP servers at a glance

The development team behind the Model Context Protocol (MCP) has introduced the MCP Registry as a preview – an open catalog and API to discover and use publicly available MCP servers. MCP is an open ...