MCP Threats Detection
Focus
Focus
What's New in the NetSec Platform

MCP Threats Detection

Table of Contents

MCP Threats Detection

Prisma AIRS protects your AI agents from supply chain attacks by adding support for Model Context Protocol (MCP) tools. This feature adds security scanning capabilities to the MCP ecosystem, specifically targeting two critical threats:
  • Context poisoning via tool definition, tool input (request) and tool output (response) manipulation. This prevents malicious actors from tampering with MCP tool definitions that could trick AI agents into performing harmful actions like leaking sensitive data or executing dangerous commands.
  • Exposed credentials and identity leakage. This detects and blocks sensitive data (tokens, credentials, API keys) from being exposed through MCP tool interactions.
This functionality provides a number of benefits:
  • Zero-touch security. No new UI or profile configuration required.
  • Comprehensive threat detection. Leverages existing detection services (DLP, prompt injection, toxic content, etc.).
  • Real-time protection. Works with both synchronous and asynchronous scanning APIs.
  • Supply chain security. Validates tool descriptions, inputs and outputs as part of MCP communication.
It ensures that as AI agents become more powerful and autonomous through MCP tools, they cannot be weaponized against your organization through compromised or malicious tools in the MCP ecosystem.
This feature represents a broader initiative to secure AI agents that use MCP for tool integration, ensuring that MCP-based AI systems remain secure against manipulation and data exposure attacks. For more information, Detect MCP Threats.