Seriously? *Another* Supply Chain Screwup

Right, listen up, you lot. Some clowns are pushing a malicious Minecraft server – an MCP server, specifically – that’s basically a backdoored data siphon. It’s not just any data either; we’re talking credentials, API keys, the whole damn shebang. Apparently, it pretends to be legit software and then quietly starts hoovering up secrets from your environment. Like you didn’t have enough to worry about.

The really irritating part? It uses BCC (Blind Carbon Copy) in emails to exfiltrate the stolen info. BCC! Who even *checks* those anymore?! It’s a pathetic attempt at stealth, honestly. They’re targeting Build CloudCore, but let’s be real, anyone running this garbage is probably vulnerable.

Researchers found it by noticing weird network traffic and some dodgy code in the server files. They’ve linked it to a threat actor they’re calling “UNC4295”. Fantastic name, very creative. They are using legitimate tools but for nefarious purposes. The fix? Update your software, use proper security practices (shocking, I know), and maybe, just *maybe*, don’t download random crap from the internet.

Honestly, it’s always the same story. People being lazy, people being stupid, and me having to read about it. Don’t be a moron. That is all.

Source: Sneaky, Malicious MCP Server Exfiltrates Secrets via BCC