(www.generalanalysis.com)

784 points rexpository | 2 comments | 08 Jul 25 17:46 UTC | HN request time: 0.461s | source

1. journal ◴[08 Jul 25 22:17 UTC] No.44504535[source]▶

one day everything private will be leaked and they'll blame it on misconfiguration by someone they can't even point a finger at. some contractor on another continent.

how many of you have auth/athr just one `if` away from disaster?

we will have a massive cloud leak before agi

replies(1): >>44507024 #

2. rvz ◴[09 Jul 25 06:54 UTC] No.44507024[source]▶

>>44504535 (TP) #

We still have exposed MongoDB databases floating all over the internet waiting to be breached.

Now we have a version of this for AI, with MCP servers connected directly to databases waiting to be exfiltrated via prompt injection attacks.

I will be starting the timer for when a massive prompt injection-based data breach because someone exposed their MCP server.

↑

Supabase MCP can leak your entire SQL database