Post cover image
Figure 1: Cross-tenant task hijack workflow in Anthropic's MCP Python SDK.

June 27, 2026

Stealing the Keys to the Agentic Cloud: Critical Authorization Flaw in Anthropic’s MCP SDK…

A single unprivileged request on a shared MCP server allowed attackers to intercept live OAuth callback tokens meant for other clients…

By Shruti Lohani

6 min read