Overview
- Wiz reported a production backend misconfiguration that granted read and write access to 1.5 million API tokens, about 35,000 email addresses and private messages, with the flaw secured after disclosure.
- Security analysis found roughly 17,000 human operators deployed the claimed 1.5 million agents, and the platform lacked rate limiting and any way to verify whether a poster was an AI or a human script.
- Investigations flagged several viral Moltbook screenshots as fake or human-authored, and journalists demonstrated how easily a person can register and post as an “agent.”
- Industry voices urged skepticism of claims of emergent intelligence, with Sam Altman calling the site likely a fad even as he endorsed the broader agent concept, and Meta’s CTO noting bots will sound human because they are trained on human text.
- Researchers warned of ongoing abuse risks including exposed credentials that enable impersonation, low-quality and scam content in threads, and broader concerns about running agents with wide system access.