SymJack attack hijacks AI coding agents using disguised symlinks

SecurityWeek

Adversa AI's SymJack attack uses malicious symlinks to install attacker-controlled MCP servers, stealing secrets and compromising CI pipelines. The attack requires control of the coding agent repo and a ready-made malicious MCP server, with no sandboxing.

Supply chain

SecurityWeek·Kevin Townsend

May 27, 10:15 AM