@anu4is profile picture
David Fiser @anu4is

security researcher, former malware analyst

Joined June 2012
  • Tweets 268
  • Following 146
  • Followers 97
12 Photos and videos
42.6% of MCP server repos with confirmed exploitable vulnerabilities show signs of AI-generated code. With Alfredo Oliveira at TrendAI Research, we swept 19,000 MCP servers; analysis shows 600–1,650 repos contain exploitable vulnerabilities. trendmicro.com/vinfo/us/secu…

Hunt Them All: An AI-Powered Vulnerability Sweep of 19,000 MCP Servers

In this research, we analyzed over 19,000 open-source MCP server repositories to uncover how much AI-generated code they contain and how many harbor exploitable vulnerabilities.

trendmicro.com
21
David Fiser retweeted
TrendAI™ Research
@trendai_RSRCH
Apr 28
MCP adoption is exploding as AI agents plug into everything, but security is lagging badly. Exposed MCP servers nearly tripled to 1,467 in just months, many running with zero authentication and leaking direct access to cloud services. Read more: research.trendmicro.com/48qJ…
3
364
David Fiser retweeted
TheZDIBugs@TheZDIBugs
Apr 15
[ZDI-26-261] (0Day) Docker Desktop credentialHelper Directory Traversal Privilege Escalation Vulnerability (CVSS 7.5; Credit: Nitesh Surana (niteshsurana.com) & Nelson William Gamazo Sanchez of Trend Research) zerodayinitiative.com/adviso…
1
2
596
Your AI Gateway Was a Backdoor: Inside the LiteLLM Supply Chain Compromise | Trend Micro (US) trendmicro.com/en_us/researc…

Your AI Gateway Was a Backdoor: Inside the LiteLLM Supply Chain Compromise

TeamPCP orchestrated one of the most sophisticated multi-ecosystem supply chain campaigns publicly documented to date. It cascaded through developer tooling and compromised LiteLLM and exposed how AI...

trendmicro.com
1
1
110
Heads up for #RSAC2026 attendees — at #CloudVillage, Alfredo Oliveira (Sr. Security Researcher, TrendAI) is presenting: "Mitigating MCP Server Threats in Cloud Environments" Worth the stop by 1:50PM Schedule: cloud-village.org/rsa26 #MCPSecurity #CloudSecurity #TrendAI

RSA 2026 | Cloud Village

Cloud Village is an open space to meet folks interested in offensive and defensive aspects of cloud security.

cloud-village.org
2
32
David Fiser retweeted
TrendAI™ Research
@trendai_RSRCH
Mar 4
The TrendAI™ State of AI Security Report is out. As the AI threat landscape evolves, organizations must adopt proactive strategies to address unique risks from supply chain vulnerabilities and exposed infrastructure. Strengthen your AI defenses: research.trendmicro.com/Stat…
0:22
2
3
1,346
David Fiser@anu4is
23 Sep 2025
Beware of AI applications and their privacy policy claims. In new research, we reveal when security measures fail miserably, resulting in the exposure of sensitive user photos and proprietary AI models due to unsecured cloud storage. trendmicro.com/en_us/researc…

AI-Powered App Exposes User Data, Creates Risk of Supply Chain Attacks

Trend™️ Research’s analysis of Wondershare RepairIt reveals how the AI-driven app exposed sensitive user data due to unsecure cloud storage practices and hardcoded credentials, creating risks of...

trendmicro.com
24
David Fiser@anu4is
17 Sep 2025
As part of our continuous research on how to strengthen Model Context Protocol (MCP) security we explore how proper MCP server hardening within containers can mitigate security risks and offer security benefits essential for protecting cloud workloads. trendmicro.com/vinfo/us/secu…

Using Containers to Secure Your MCP Infrastructure

Security risks to MCP servers can be mitigated by running them within containers. This report discusses these security risks and how MCP containerization can implement least privilege in practice.

trendmicro.com
23
David Fiser@anu4is
13 Aug 2025
Don't forget that secret management best practices apply to MCP servers! trendmicro.com/vinfo/us/secu…

Beware of MCP Hardcoded Credentials: A Perfect Target for Threat Actors

Poor secret management in MCP servers can lead to serious consequences, including data breaches and supply chain attacks. This article examines the reality of these unsecure configurations and offers...

trendmicro.com
1
2
113
David Fiser@anu4is
17 Jul 2025
Don't be a victim of fast and unsafe MCP server deployments. MCP Security: Network-Exposed Servers Are Backdoors to Your Private Data trendmicro.com/vinfo/ph/secu…

MCP Security: Network-Exposed Servers Are Backdoors to Your Private Data | TrendAI (US)

Exposed MCP servers pose a risk for organizations utilizing them. Our research examined the types of concerns that emerge and how to keep systems safe through immediate and extended measures.

trendaisecurity.com
22
David Fiser@anu4is
28 May 2025
Trend Micro Leading the Fight to Secure AI | Trend Micro (US) trendmicro.com/en_us/researc…

Trend Micro Leading the Fight to Secure AI

Secure AI with and your organizations’ cyber resilience with the new MITRE ATLAS.

trendmicro.com
33
David Fiser retweeted
TrendAI™ Research
@trendai_RSRCH
29 Apr 2025
Organizations running AI-powered services with proprietary models could be at risk of intellectual property theft, particularly if their models or inference services are exposed through misconfigured APIs. Here’s what you need to know: research.trendmicro.com/4jyY…

NVIDIA Riva Vulnerabilities Leave AI-Powered Speech and Translation Services at Risk

Trend Research uncovered misconfigurations in NVIDIA Riva deployments, with two vulnerabilities, CVE-2025-23242 and CVE-2025-23243, contributing to their exposure. These security flaws could lead to...

trendmicro.com
1
1
410
David Fiser retweeted
TrendAI™ Research
@trendai_RSRCH
17 Apr 2025
The exposure of OpenVPN and SSH keys within a container image can lead to full network compromise. Learn how to protect your keys and certificates today. Read more here:⬇️ research.trendmicro.com/4iUh…

From Registries to Private Networks: Threat Scenarios Putting Organizations in Jeopardy

Stolen certificates and private keys could be weaponized by cybercriminals to penetrate a company’s system. Our research investigates how these scenarios would play out, how they affect the organiz...

trendmicro.com
3
5
479
David Fiser retweeted
TrendAI™ Research
@trendai_RSRCH
13 Apr 2025
Cybercriminals can weaponize stolen certificates and private keys to infiltrate systems undetected. Learn how to safeguard your organization from these risks. Here’s what you need to know: ⬇️ research.trendmicro.com/4iUh…

From Registries to Private Networks: Threat Scenarios Putting Organizations in Jeopardy

Stolen certificates and private keys could be weaponized by cybercriminals to penetrate a company’s system. Our research investigates how these scenarios would play out, how they affect the organiz...

trendmicro.com
1
2
518
David Fiser retweeted
TheZDIBugs@TheZDIBugs
7 Apr 2025
[ZDI-25-205] Amazon AWS CloudFormation Templates Uncontrolled Search Path Element Remote Code Execution Vulnerability (CVSS 9.8; Credit: Nitesh Surana (@_niteshsurana) of Trend Micro Research) zerodayinitiative.com/adviso…

ZDI-25-205

Amazon AWS CloudFormation Templates Uncontrolled Search Path Element Remote Code Execution Vulnerability

zerodayinitiative.com
2
9
908
David Fiser@anu4is
3 Apr 2025
From Registries to Private Networks: Threat Scenarios Putting Organizations in Jeopardy trendmicro.com/vinfo/ph/secu…

From Registries to Private Networks: Threat Scenarios Putting Organizations in Jeopardy

Stolen certificates and private keys could be weaponized by cybercriminals to penetrate a company’s system. Our research investigates how these scenarios would play out, how they affect the organiz...

trendmicro.com
15
David Fiser retweeted
TheZDIBugs@TheZDIBugs
13 Mar 2025
[ZDI-25-144|CVE-2025-23243] NVIDIA Riva gRPC API Missing Authentication for Critical Function Authentication Bypass Vulnerability (CVSS:6.5; Credit: David Fiser and Alfredo Oliveira (Nebula of Trend Micro) zerodayinitiative.com/adviso…

ZDI-25-144

NVIDIA Riva gRPC API Missing Authentication for Critical Function Authentication Bypass Vulnerability

zerodayinitiative.com
7
11
3,368
David Fiser retweeted
TheZDIBugs@TheZDIBugs
13 Mar 2025
[ZDI-25-145|CVE-2025-23243] NVIDIA Riva Triton Inference Server Missing Authentication Vulnerability (CVSS:7.3; Credit: David Fiser and Alfredo Oliveira (Nebula of Trend Micro) zerodayinitiative.com/adviso…

ZDI-25-145

NVIDIA Riva Triton Inference Server Missing Authentication Vulnerability

zerodayinitiative.com
1
6
10
3,749
David Fiser retweeted
TrendAI™ Research
@trendai_RSRCH
2 Jan 2025
Exposed container registries allow attackers to upload tampered images, posing a threat to AI systems and daily operations. Our analysis talks about this and more to help you learn how to secure your AI systems:⬇️ research.trendmicro.com/4gAd…
2
3
619
David Fiser@anu4is
12 Dec 2024
Do you want to know if there is a ticking bomb in your DevOps environment? Is your AI pipeline safe? Read our newest research paper wrote in cooperation with Alfredo Oliveira. trendmicro.com/vinfo/us/secu…

Unleashing Chaos: Real World Threats Hidden in the DevOps Minefield

Threat actors are actively looking for exposed .env files. These files have become ticking bombs deeply rooted inside DevOps practices. Our research paper uncovers the hidden dangers in DevOps using...

trendmicro.com
33
Load more