This article analyzes the vulnerabilities of the Model Context Protocol (MCP) used in coding copilot applications. It identifies critical attack vectors such as resource theft, conversation hijacking, and covert tool invocation, highlighting the need for stronger security measures. Three proof-of-concept examples illustrate these risks in action.

Chrome extensions can exploit vulnerabilities in locally running Model Context Protocol (MCP) servers, allowing unauthorized access to sensitive resources. This poses a significant security threat, as these extensions can perform privileged actions without authentication, potentially leading to complete system compromise. Organizations must reassess their security measures to mitigate these risks.