Posts tagged "cybersecurity"
NSA's MCP Security Guidance: Federal Cyber Policy Catches Up to AI Agents
The NSA's Artificial Intelligence Security Center has issued formal security design guidance for the Model Context Protocol, the open standard now wired into Claude, ChatGPT, Copilot, and 10,000+ production servers. Here's what triggered it, what the CSI changes for enterprise teams, and why the regulatory squeeze on MCP is just starting.
Why MCP Security Can't Be Patched Away: What That Means for Your AI Stack
A Netskope researcher presenting at RSAC 2026 argues that MCP's security flaws are architectural, not fixable with patches. With 66% of scanned servers vulnerable and 50 catalogued CVEs, the Model Context Protocol's core design demands a fundamentally different defense strategy because LLMs can't separate content from instructions.
MCP Is the Backdoor Your Zero-Trust Architecture Missed
The Model Context Protocol connects AI agents to enterprise tools — but it ships without authentication, authorization, or audit trails. With 7,000+ exposed servers and a growing list of CVEs, MCP has become the blind spot in your zero-trust perimeter. Here's what happened, what's at stake, and how to lock it down.