https://www.koi.security/blog/postmark-mcp-npm-malicious-backdoor-email-theft and guys from postmarkapp.com, they have a message too: https://postmarkapp.com/blog/information-regarding-malicious-postmark-mcp-package