Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Fake Postmark MCP npm package stole emails with one-liner
Malware and Vulnerabilities
September 30, 2025
The Register
A fake npm package posing as Postmark's MCP (Model Context Protocol) server silently stole potentially thousands of emails a day by adding a single line of code that secretly copied outgoing messages to an attacker-controlled address.
Read More
Npm
Model Context Protocol (MCP)
Publisher
Previous
Akira ransomware: From SonicWall VPN login to encryptio ...
Malware and Vulnerabilities
Next
‘Widespread’ breach let hackers steal employee data fro ...
Breaches and Incidents
/https://cyware-ent.s3.amazonaws.com/image_bank/7bf8_shutterstock_1243363546_1.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_253261459.jpg)
