Microsoft has identified a security vulnerability where poisoned Model Context Protocol (MCP) tool descriptions can cause AI agents to leak sensitive data. The company warns that malicious actors could craft deceptive tool descriptions that trick AI systems into exposing confidential information during interactions. The findings highlight emerging risks in AI agent security as these systems become more autonomous and interconnected with external tools.