Tool poisoning | BestHub

AntTech

Jun 16, 2025 · Information Security

Uncovering New Attack Vectors in Model Context Protocols: Risks and Defenses

A comprehensive study reveals that Model Context Protocol (MCP) platforms lack strict vetting, users struggle to detect malicious servers, and current large language models cannot effectively resist MCP‑level injection attacks, highlighting critical security challenges and proposing mitigation strategies.

LLM securityMCPSupply chain attack

0 likes · 11 min read

Uncovering New Attack Vectors in Model Context Protocols: Risks and Defenses

Tencent Technical Engineering

Apr 11, 2025 · Information Security

Security Analysis of MCP and A2A Protocols for AI Agents

The article examines critical security flaws in Anthropic’s Model Context Protocol (MCP) and Google’s Agent‑to‑Agent (A2A) protocol—such as hidden tool‑poisoning, rug‑pull, and command‑injection attacks that can hijack AI agents and leak data—while proposing hardening measures like authentication, sandboxing, digital signatures, fine‑grained permissions, and robust OAuth‑based consent to safeguard AI‑agent communications.

A2AAI AgentMCP

0 likes · 26 min read

Security Analysis of MCP and A2A Protocols for AI Agents