#United States #San Francisco #API Security #Akto #MCP

Akto Launches the First MCP Security Platform

Akto, renowned as a leader in API security, made headlines with the launch of its latest innovation, Akto MCP Security. This groundbreaking platform is the first of its kind specifically engineered to safeguard Model Context Protocol (MCP) servers. In an era where AI-driven applications like ChatGPT, Claude, and GitHub Copilot are becoming essential to organizational workflows, the implementation of MCP is increasingly critical. Yet, this advancement also uncovers vulnerabilities, especially with MCP servers becoming a target for malicious activities.

The Growing Concern Over MCP Vulnerabilities

In May 2025, a significant breach was recorded in GitHub's MCP server, which allowed hackers to insert harmful commands within public issues. When these commands were executed by AI agents, they instigated unauthorized access and data leaks, spotlighting the urgent necessity for tailored security measures for MCP infrastructures. This incident underlines the challenges faced by organizations leveraging MCP as they encounter a widening attack vector.

Ankita Gupta, the Co-Founder and CEO of Akto, expressed that “MCP is the protocol paving the way for the future of AI-native software.” Recognizing the unique security demands linked with this technology, Akto has crafted a solution purposefully designed for the complex environment that MCP creates.

Features of Akto MCP Security

Akto MCP Security comes fully equipped with comprehensive features that bolster its protective capabilities against the distinctive challenges MCP servers face:

1. MCP Server Discovery: This essential feature automatically identifies all MCP-compatible servers associated with API calls across various environments. Utilizing Akto's 50+ traffic and code connectors, it effectively eliminates shadow MCPs which often go unnoticed.

2. MCP Security Testing: The platform conducts continuous assessments of MCP endpoints and tools to detect vulnerabilities such as unauthorized access, prompt injection, insecure authentication, and potential data exposure, ensuring that proactive measures are in place.

3. MCP Monitoring and Threat Detection: Through real-time behavioral analysis of MCP communications, the platform is capable of recognizing threats encompassing tool misuse, permission escalations, and suspicious behavior from malicious agents. This vigilant monitoring serves as a critical defense mechanism in today's API landscape, where risks can escalate rapidly.

The Role of Akto's Customers in Development

Developed in close collaboration with key enterprise clients, Akto MCP Security has already attracted attention from teams in various sectors including banking, fintech, and healthcare, who are increasingly integrating MCP into their operations. To meet the evolving security demands, Akto intends to enhance its API Security offerings to confront emerging threats, ensuring it remains at the forefront of API safeguarding technology.

Akush Jain, Akto’s CTO, addressed the dual-edged nature of MCP by stating, “MCP opens powerful new possibilities, but also dangerous new paths for abuse.” His emphasis on dedicated logic for MCP functionality underscores Akto's commitment to helping security teams effectively monitor, test, and protect these advanced systems with context-sensitive measures.

Accessibility & Future Participation

Currently, Akto is onboarding interested partners into its early access program, constructed specifically for companies operating with MCP technology. Interested parties can explore partnership options and request personalized demo sessions via their official website or reach out directly by email.

By launching the Akto MCP Security platform, Akto is not just paving the way for enhanced API security, but also reinforcing its standing as a pioneering force in the tech security landscape.