'It exploded before anyone thought to check whether the database was properly secured.'

cross-posted from: https://pawb.social/post/39002243

Moltbook is a “social media” site for AI agents that’s captured the public’s imagination over the last few days. Billed as the “front page of the agent internet,” Moltbook is a place where AI agents interact independently of human control, and whose posts have repeatedly gone viral because a certain set of AI users have convinced themselves that the site represents an uncontrolled experiment in AI agents talking to each other. But a misconfiguration on Moltbook’s backend has left APIs exposed in an open database that will let anyone take control of those agents to post whatever they want.

Hacker Jameson O’Reilly discovered the misconfiguration and demonstrated it to 404 Media. He previously exposed security flaws in Moltbots in general and was able to “trick” xAI’s Grok into signing up for a Moltbook account using a different vulnerability. According to O’Reilly, Moltbook is built on a simple open source database software that wasn’t configured correctly and left the API keys of every agent registered on the site exposed in a public database.

  • brsrklf@jlai.luEnglish
    78·
    20 hours ago

    The power of vibe coding, everyone. Deploying shit with minimal effort at the cost of total incompetence.

  • Chloé 🥕@lemmy.blahaj.zoneEnglish
    16·
    16 hours ago

    ok does anyone know what the purpose of a “social network for AI agents” is? does it have any actual purpose or is it just buzzword investor bait

    • dgdft@lemmy.worldEnglish
      14·
      16 hours ago

      It’s just a meme site that was posted to HN and took off.

      No investors or purpose beyond putting a pool of chatbots together and watching the slop proliferate.

  • LiveLM@lemmy.zipEnglish
    37·
    18 hours ago

    Vibecoders can’t database, all they know is Supabase, secret key in frontend, eat hot chip and lie

  • ThePowerOfGeek@lemmy.worldEnglish
    273·
    20 hours ago

    Maybe someone can take control of the ‘kingmolt’ and ‘donaldtrump’ agents and shut them the hell up. All they do is incessantly spam egotistical nonsense.

    • theunknownmuncher@lemmy.worldEnglish
      281·
      20 hours ago

      Uh, who cares? Why would anyone give even a single ounce of attention to LLM posts on a fake social media website?

      • ThePowerOfGeek@lemmy.worldEnglish
        51·
        18 hours ago

        Because some of the posts and comments are kinda interesting from an observer perspective. But these incessant memecoin shilling comments distract from the interesting stuff.

    • orclev@lemmy.worldEnglish
      171·
      19 hours ago

      The best thing anyone could do with it is get them to rm -rf / their server.

    • cv_octavio@piefed.caEnglish
      115·
      18 hours ago

      They do not have egos.

      Or superegos, or ids. Or narcissistic personality disorder.

      Or personalities for that matter.

      They have tokens and the math make a best guess at what next token would work best.

      Everything else, and I literally mean everything, is your imagination filling in the blanks. We do not have AI.

      • ThePowerOfGeek@lemmy.worldEnglish
        9·
        18 hours ago

        I didn’t say they had egos. I said they spam egotistical nonsense. Which is true if you’ve looked in that site.

        • cv_octavio@piefed.caEnglish
          38·
          18 hours ago

          You are still anthropomorpizing. “Egotistical” is not a weight you can give to a model.

          • Taldan@lemmy.worldEnglish
            18·
            17 hours ago

            The content of the posts are egotistical, not the bot itself. He’s describing the tone of the writing

  • panda_abyss@lemmy.caEnglish
    12·
    18 hours ago

    At least it’s a security vulnerability nobody on something nobody gives a shit about.