It took this long to find a problem in model context protocol (MCP) servers. "A Tool Poisoning Attack occurs when malicious instructions are embedded within MCP tool descriptions that are invisible to users but visible to AI models." The page shows how a local MCP server could be prompted to extract private keys and send them to an attacker's email address.
Today: Total: [Direct link] [Share]
