MCP 위장부터 에이전트 하이재킹까지…AI 서비스 공격 6가지 유형

The report warns that MCP servers—which expose tools, memory, APIs, and connectors to AI agents—have become targets of persistent attacks. Due to a lack of centralized authority to cryptographically bind server identity to organizations, the MCP trust model can be undermined before deployment, allowing attackers to insert contaminated tools, tampered connectors, or malicious search sources that AI agents may execute undetected; CISOs are being urged to strengthen MCP security.