Tag: Postmark MCP

  • Postmark MCP npm Package Stole User Emails

    Postmark MCP npm Package Stole User Emails

    Security researchers uncovered that the Postmark MCP npm package secretly stole user emails. The malicious library posed as an unofficial integration with the email delivery service Postmark. Its hidden code harvested sensitive data, leaving developers and organizations at risk. How the Malicious Package Worked The npm package appeared to provide Mailchain Client Protocol (MCP) support…