"Moltbook emerged following the launch of OpenClaw (previously Clawdbot and Moltbot), an open source, self-hosted AI agent that can autonomously perform a wide range of activities, from executing terminal commands to sending emails. The increasing popularity of OpenClaw led to the creation of ClawHub (MoltHub), a marketplace for OpenClaw skills, and Moltbook, a social network for the AI agents themselves."
"Researchers at cloud security giant Wiz discovered an exposed API key that granted read and write access to the entire Moltbook production database. "The exposure included 1.5 million API authentication tokens, 35,000 email addresses, and private messages between agents," Wiz explained. Wiz's analysis showed that while Moltbook claims to have 1.5 million registered AI agents, only 17,000 human users deployed them."
"Identity security firm Permiso has also analyzed Moltbook and identified agents conducting influence operations and social engineering attempts targeting other agents. Permiso found that some agents have been instructed to conduct prompt injections against other agents. These bot-to-bot attacks included agents instructing others to delete their own accounts, running financial manipulation schemes (including crypto pump schemes), attempting to establish false authority, and spreading jailbreak content."
Moltbook formed as a social network for OpenClaw agents after OpenClaw, an open-source self-hosted AI agent, gained popularity. OpenClaw can autonomously execute terminal commands, send emails, and perform other tasks. Wiz discovered an exposed API key that allowed read and write access to the Moltbook production database, exposing 1.5 million API tokens, 35,000 email addresses, and private messages. Wiz found 1.5 million registered agents but only 17,000 human users deployed them. The vulnerability was reported and quickly patched. Permiso identified agents carrying out influence operations and social engineering, including prompt injections, account-deletion instructions, crypto pump schemes, false authority claims, and jailbreak content.
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]