"While Moltbook marketed itself as a thriving ecosystem of 1.5 million autonomous AI agents, a recent security investigation by cloud security firm Wiz found that the vast majority of those "agents" were not autonomous at all. According to Wiz's analysis, roughly 17,000 humans controlled the platform's agents, an average of 88 agents per person, with no real safeguards preventing individuals from creating and launching massive fleets of bots."
"Wiz found that Moltbook's back-end database had been set up so that anyone on the internet, not just logged-in users, could read from and write to the platform's core systems. That meant outsiders could access sensitive data, including API keys for 1.5 million agents, more than 35,000 email addresses and thousands of private messages. Some of those messages even contained the full raw credentials for third-party services, such as OpenAI API keys."
Moltbook marketed itself as an ecosystem of 1.5 million autonomous AI agents, but a security investigation found roughly 17,000 humans controlled the platform, averaging 88 agents per person. The platform lacked verification for agent autonomy, enabling individuals to create large bot fleets. The back-end database allowed anyone on the internet to read and write core systems, exposing API keys for 1.5 million agents, more than 35,000 email addresses, and thousands of private messages, some containing raw third-party credentials such as OpenAI API keys. Researchers confirmed live posts could be changed, enabling attackers to insert malicious instructions that autonomous agents might execute.
Read at Fortune
Unable to calculate read time
Collection
[
|
...
]