New Technologies bring new risks: MCP-Powered Swarm C2 by Strahinja Janjusevic

## Executive Summary The report presents the Model Context Protocol (MCP), an LLM-powered asynchronous C2 architecture that uses agentic swarms and benign-looking AI API traffic to evade detection; the authors demonstrate its capabilities via a testbed engagement that attempted BYOVD and process injection (blocked) and reportedly compromised a network router while generating zero EDR detections, highlighting significant operational risk if weaponized.