Asana MCP server back online after plugging a data-leak hole
Briefly

Asana has resolved a security vulnerability in its Model Context Protocol (MCP) server, which had been offline for nearly two weeks for maintenance. The MCP, an open source protocol that enables AI agents to integrate and interact with external data, posed risks of data exposure among users. The vulnerability was discovered on June 4, leading to significant downtime until June 17. Although the interface is operational again, organizations must reconnect, with Asana communicating directly with affected customers regarding necessary actions and the issue's implications.
Asana has fixed a bug in its Model Context Protocol (MCP) server after a two-week downtime, which could have exposed user data to others.
MCP, introduced by Anthropic, allows AI agents to interface with external sources; however, a vulnerability required Asana to take it offline for fixes.
Read at Theregister
[
|
]