> First Malicious MCP in the Wild

First that you know of. MCP zero-days seems to be so much easier to find and exploit.