Knostic's AI Security Research Unveiled: 1,862 exposed MCP servers lack essential security measures
Friday, August 1, 2025
Knostic's research, "Exposing the Unseen: Mapping MCP Servers Across the Internet," found 1,862 exposed Model Context Protocol (MCP) servers, all of which were insecure and allowed unauthenticated access to internal tool listings. This highlights a significant security risk in AI adoption, as sensitive data and functionalities could be exposed. Knostic, founded in 2023 by Gadi Evron and Sounil Yu, provides need-to-know access controls for Large Language Models (LLMs) to ensure safe AI adoption.
TEL AVIV, Israel, July 24, 2025 /PRNewswire-PRWeb/ -- Knostic, a leader in AI-based data security, announces the publication of its latest research, "Exposing the Unseen: Mapping MCP Servers Across the Internet". This study highlights the widespread exposure of Model Context Protocol (MCP) servers, revealing significant security flaws that could impact organizations globally.
Knostic's research team discovered a total of 1,862 MCP servers exposed to the internet. From that set, 119 servers were sampled for manual verification. All 119 servers allowed access to internal tool listings without authentication.
The study was conducted using Shodan and a suite of custom Python tools. The research team fingerprinted and mapped production MCP servers. All servers discovered in the study were insecure, revealing their capabilities to anyone asking.
Given the rapid adoption of AI technologies, the low quality of the systems themselves, combined with nonexistent security, is certainly worrying. It raises concerns that, as with previous technologies, security will only be introduced after the systems have already been exploited.
"Our research underscores a pressing issue in AI adoption: security issues will find you if you do not seek them out," said Gadi Evron, Co-Founder and CEO of Knostic. "Without proper safeguards, organizations risk exposing sensitive data and functionalities to unauthorized users, with potentially severe consequences."
For more details and access to the full research, see the attached file or visit Knostic's blog.
Media Contact
Carmel Aloni, Knostic, 972 542457680, carmel.aloni@knostic.ai, www.knostic.ai
View original content to download multimedia:https://www.prweb.com/releases/knostics-ai-security-research-unveiled-1-862-exposed-mcp-servers-lack-essential-security-measures-302512722.html
SOURCE Knostic
|
|
|
|
|
 |
Identiv Completes Thailand Manufacturing Transition, Unlocking Next-Generation Multicomponent Manufacturing for Advanced IoT Solutions | Jan 22, 2026
|
|
Global Cyber Alliance Identifies Five Cybersecurity Forces That Defined 2025 - And Will Shape 2026 | Jan 22, 2026
|
|
LG ELECTRONICS INTRODUCES 2026 LG GRAM LINEUP ELEVATED BY AEROMINUM | Jan 22, 2026
|
|
New Report Names States Most Vulnerable to Holiday Scams | Jan 22, 2026
|
|
Guardz 2025 SMB Cybersecurity Report: Nearly 50% of U.S. Small Businesses Have Been Hit by Cyber Attack | Jan 22, 2026
|
|
pgEdge Announces pgEdge Agentic AI Toolkit for Postgres | Jan 22, 2026
|
|
Android Mobile Adware Surges in Second Half of 2025 | Jan 22, 2026
|
|
Truvista Fiber Acquires SlyTel | Jan 22, 2026
|
|
Healthcare Industry Executives are Likely to be Personal Targets of Cybercrime | Jan 22, 2026
|
|
Breakthrough Progress: METiS TechBio Publishes Consecutive Research Findings in Nature Communications and the Journal for ImmunoTherapy of Cancer | Jan 22, 2026
|
|
|
