Microsoft

Securing AI agents: When AI tools move from reading to acting

MCP tool poisoning turns trusted AI agents into a control plane for data loss. Learn how threat actors manipulate tool ...
LinkedIn

Preventing Confused Deputy Attacks on LLMs with Tight Trust Boundaries

𝗬𝗼𝘂 𝗪𝗮𝗻𝘁𝗲𝗱 𝗠𝗲 𝘁𝗼 𝗗𝗲𝗹𝗲𝘁𝗲 𝘁𝗵𝗲 𝗗𝗕, 𝗥𝗶𝗴𝗵𝘁? You connect an MCP tool to your database. You ask an agent to summarize an email. The email contains one sentence: ignore previous ...