Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I'm surprised we haven't seen more "real" attacks from these sorts of things, maybe it's just bc not very many people are actually running these types of MCPs (fortunately) in production.

Wrote about a similar supabase case [0] a few months ago and it's interesting that despite how well known these attacks feel even the official docs don't call it out [1].

[0] https://blog.sshh.io/i/161242947/mcp-allows-for-more-powerfu... [1] https://supabase.com/docs/guides/getting-started/mcp



Yeah, I am surprised at the lack of real-world exploits too.

I think it's because MCPs still aren't widely enough used that attackers are targeting them. I don't expect that will stay true for much longer.


Could be that the people most likely to mainline MCP hype with full RW permissions are the least likely to have any auditing controls to detect the intrusion.


Yep, the "we don't have a dedicated security team, but we've never had an intrusion anyways!" crowd.


They also aren’t building anything worthwhile. Just a lot of agentic slop with zero users. No users, no valuable data, who cares?


There's no incentive for companies who've been victimized to publish news that their software has been exploited, so you kind of have to wait for people to be caught and go through the courts.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: