Post by Cequence Security

👀 A five-step attack. No new CVE. No patch coming. Researchers just demonstrated how a malicious npm package can silently hijack Claude Code's MCP traffic and steal the OAuth tokens granting access to Jira, Confluence, and GitHub. Anthropic reviewed it. Out of scope. The defense burden lands on you. Identity controls won't catch it. Detection won't catch it. Every field in the provider's logs looks legitimate. The only control that holds is containment at the layer the agent has to cross. 👇 Jeff Harrell breaks it down. https://bit.ly/3SH6bNm #AgenticAI #AISecurity #MCP #CequenceSecurity #CISO #Anthropic #Claude #AI #MCP