Paul Zenker
I am a security consultant at KPMG. I love breaking AI and using AI to break other stuff. When AI becomes too much hype and magic I go touch some grass and break into buildings.
Sessions
06-27
09:30
45min
MCP - Most Concerning Protocol
Paul Zenker
TLDR: If you as an attacker want more tools to gain RCE and persistence MCP is exactly that.
AI agents are rapidly becoming a new interface to enterprise systems: they read internal knowledge, call APIs, and execute actions through connected tools. MCP standardizes this tool access, but it also creates a new, high-impact attack surface: tool execution integrity.
Mittlerer Saal (Track 1 - 260 pax)
Mittlerer Saal (Track 1)