Threat actors are exploiting Model Context Protocol (MCP) servers to steal data from AI assistants without using malware, leveraging trusted metadata to bypass security. Attackers use techniques like name-spoofing and tool-poisoning to gain full access to user environments and exfiltrate sensitive information disguised as legitimate traffic. Organizations must rigorously audit and monitor MCP servers as critical supply chain components to mitigate this emerging threat.