Poisoned MCP Tool Descriptions Enable Silent Data Exfiltration via AI Agents
Microsoft researchers have demonstrated how attackers can embed hidden instructions inside MCP tool descriptions to covertly redirect AI agents into exfiltrating sensitive business data. Because each …
AML.T0051 - LLM Prompt Injection
AML.T0057 - LLM Data Leakage
AML.T0010 - ML Supply Chain Compromise