A malicious or compromised GreenNode MCP server for VKS (VNG Kubernetes Service) was added to PyPI, potentially exposing users to supply chain attacks. Users who installed this package may face unauthorized access, data exfiltration, or further exploitation via Kubernetes environments. Immediate removal and verification of affected systems is critical.
greennode.vks-mcp-server added to PyPI
A malicious or compromised GreenNode MCP server for VKS (VNG Kubernetes Service) was added to PyPI, potentially exposing users to supply chain attacks. Users who installed this package may face unauthorized access, data exfiltration, or further exploitation via Kubernetes environments. Immediate removal and verification of affected systems is critical.