AI agent social media network Moltbook is a security disaster - millions of credentials and other details left unsecured (www.techradar.com)

Moltbook, an AI-centric pseudo-social network, has come under fire for a significant security breach that exposed sensitive user data due to a misconfigured Supabase backend. Researchers from Wiz revealed that the leak included an alarming 1.5 million API tokens, 35,000 email addresses, and private messages, all accessible without proper authentication. While the exposed API key itself isn't indicative of a security flaw when configured correctly, it was mistakenly set up without essential Row Level Security (RLS) policies, allowing full database access to anyone who obtained the key. The incident is particularly noteworthy for the AI/ML community as it highlights the disparity between the platform's marketed capabilities of autonomous AI agents and the reality of human operators managing bot fleets. This discrepancy undermines the perceived sophistication of AI in social networking, raising concerns about authenticity and user trust in AI-driven platforms. The swift response from Moltbook to secure their data following the discovery is a reminder of the mounting importance of robust security practices in the rapidly evolving landscape of AI technologies.