Dataconomy
  • News
    • Artificial Intelligence
    • Cybersecurity
    • DeFi & Blockchain
    • Finance
    • Gaming
    • Startups
    • Tech
  • Industry
  • Research
  • Resources
    • Articles
    • Guides
    • Case Studies
    • Whitepapers
    • AI Models Leaderboard
  • AI toolsNEW
  • Newsletter
  • + More
    • Glossary
    • Conversations
    • Events
    • About
      • Who we are
      • Contact
      • Imprint
      • Legal & Privacy
      • Partner With Us
Subscribe
No Result
View All Result
  • AI
  • Tech
  • Cybersecurity
  • Finance
  • DeFi & Blockchain
  • Startups
  • Gaming
Dataconomy
  • News
    • Artificial Intelligence
    • Cybersecurity
    • DeFi & Blockchain
    • Finance
    • Gaming
    • Startups
    • Tech
  • Industry
  • Research
  • Resources
    • Articles
    • Guides
    • Case Studies
    • Whitepapers
    • AI Models Leaderboard
  • AI toolsNEW
  • Newsletter
  • + More
    • Glossary
    • Conversations
    • Events
    • About
      • Who we are
      • Contact
      • Imprint
      • Legal & Privacy
      • Partner With Us
Subscribe
No Result
View All Result
Dataconomy
No Result
View All Result

Wiz uncovers Moltbook flaw exposing 1.5M API tokens

Unauthenticated human users could exploit the issue to edit live posts on Moltbook.

byEmre Çıtak
February 3, 2026
in Cybersecurity, News
Home News Cybersecurity
Share on FacebookShare on TwitterShare on LinkedInShare on WhatsAppShare on e-mail
Google Preferred Source

Cybersecurity firm Wiz uncovered a vulnerability in Moltbook, a social network for AI agents, exposing credentials of thousands of human users through its AI-generated Reddit-style forum.

Moltbook presents itself as a platform where AI agents interact socially. Its human founder announced on X that he did not write any code for the site. Instead, he directed an AI assistant to build the entire setup, resulting in what has been described as vibe-coded development.

Wiz detailed the flaw in a blog post, noting that it permitted full access to 1.5 million API authentication tokens, 35,000 email addresses, and private messages exchanged between agents. The vulnerability stemmed from the platform’s core forum structure, which lacked proper security measures.

Stay Ahead of the Curve!

Don't miss out on the latest insights, trends, and analysis in the world of data, technology, and startups. Subscribe to our newsletter and get exclusive content delivered straight to your inbox.

I didn't write one line of code for @moltbook.

I just had a vision for the technical architecture and AI made it a reality.

We're in the golden ages. How can we not give AI a place to hang out.

— Matt Schlicht (@MattPRD) January 30, 2026

Unauthenticated human users could exploit the issue to edit live posts on Moltbook. This capability eliminated any reliable method to confirm whether a given post originated from an AI agent or a human pretending to be one.

Wiz’s analysis stated verbatim: “1.5 million API authentication tokens, 35,000 email addresses and private messages between agents” were readable. The firm also quoted its assessment: “The revolutionary AI social network was largely humans operating fleets of bots.”

Wiz collaborated with Moltbook’s team to remediate the vulnerability after its discovery. The exposure highlighted risks in relying solely on AI for critical infrastructure like authentication and access controls in the forum’s design.


Featured image credit

Tags: moltbook

Related Posts

Samsung Galaxy Z Fold8 series leak reveals camera upgrades

Samsung Galaxy Z Fold8 series leak reveals camera upgrades

June 30, 2026
Google expands Gemini’s personalized image generation to all U.S. users

Google expands Gemini’s personalized image generation to all U.S. users

June 30, 2026
OpenClaw launches AI agent apps on iOS and Android

OpenClaw launches AI agent apps on iOS and Android

June 30, 2026
Massive data leak exposes Apple supplier Tata Electronics on dark web

Massive data leak exposes Apple supplier Tata Electronics on dark web

June 30, 2026
Proton launches Lumo 2.0 with image AI and zero-access encryption

Proton launches Lumo 2.0 with image AI and zero-access encryption

June 30, 2026
Apple touchscreen MacBook could launch with M5 Pro chips

Apple touchscreen MacBook could launch with M5 Pro chips

June 29, 2026

LATEST NEWS

Samsung Galaxy Z Fold8 series leak reveals camera upgrades

Google expands Gemini’s personalized image generation to all U.S. users

OpenClaw launches AI agent apps on iOS and Android

Massive data leak exposes Apple supplier Tata Electronics on dark web

Proton launches Lumo 2.0 with image AI and zero-access encryption

Apple touchscreen MacBook could launch with M5 Pro chips

BEST AI MODELS LEADERBOARD

See the best AI models, ranked by intelligence, benchmark results, speed and token price. Find the most suitable LLMs, Text-to-Image, Image Editing, Text-to-Speech, Text-to-Video and Image-to-Video  artificial intelligence model for your tasks and business.

LATEST TOOLS

Autoppt

Otter.ai

Slideoo

Disney Pixar AI Generator

Codebay

Newo

BlackInk.AI

WatchMyCompetitor

TokkingHeads

Fellow.app

Dataconomy

COPYRIGHT © DATACONOMY MEDIA GMBH, ALL RIGHTS RESERVED.

  • About
  • Imprint
  • Contact
  • Legal & Privacy

Follow Us

  • News
    • Artificial Intelligence
    • Cybersecurity
    • DeFi & Blockchain
    • Finance
    • Gaming
    • Startups
    • Tech
  • Industry
  • Research
  • Resources
    • Articles
    • Guides
    • Case Studies
    • Whitepapers
    • AI Models Leaderboard
  • AI tools
  • Newsletter
  • + More
    • Glossary
    • Conversations
    • Events
    • About
      • Who we are
      • Contact
      • Imprint
      • Legal & Privacy
      • Partner With Us
No Result
View All Result
Subscribe

This website uses cookies to improve your experience. You can choose to accept or reject them. Visit our Privacy Policy.