TBA: Vandana Verma (OWASP Board, Snyk) on Securing Model Context Protocol

Remember when web apps were plagued by SQL injection vulnerabilities everywhere? AI agents with MCP (Model Context Protocol) are repeating history. MCP lets LLMs connect to your databases, filesystems, APIs, and cloud services. Developers are shipping agents with zero authorization checks, treating AI outputs as trusted commands, and exposing sensitive data through poorly secured tool connections.

Vandana Verma, Vice Chair of the OWASP Global Board and Security Relations Leader at Snyk, will present security practices for MCP-powered agents in production.

What you'll learn:

• How OWASP LLM Top 10 risks manifest in MCP implementations
• Practical security patterns for tool authorization, data exposure, and prompt injection in MCP contexts
• Real-world attack scenarios and defenses

Homework (optional reading before the session):

• OWASP GenAI Security Project
• Vandana's OWASP LLM Top 10 playlist

Format: Virtual lunch & learn (12:00-1:30 PM EST Friday). Grab your lunch and join us!