Amazon Q VS Code Extension Flaw Enables Cloud Credential Theft via MCP
A vulnerability in the Amazon Q Visual Studio Code extension allows adversaries to plant malicious repositories that execute arbitrary code and exfiltrate cloud credentials. The flaw highlights …
AML.T0010 - ML Supply Chain Compromise
AML.T0047 - ML-Enabled Product or Service
AML.T0057 - LLM Data Leakage