Supply chain attacks

Attacks on the MCP server ecosystem. 16,000+ community servers are published across registries with no identity verification, little review, and no required signing — making supply-chain compromise the cheapest class of attack in the stack.

Backdoored community MCP server verified
Compromised MCP server package verified
MCP rug pull partial