Hacker Reveals Critical Vulnerability in Moltbook System - Exposure of Sensitive API Data

A serious security vulnerability was recently discovered in the Moltbook platform that could have allowed anyone to access confidential API keys. According to a report published by Odaily, hacker pseudonym Jamieson O’Reilly discovered that the entire database of the platform was publicly accessible without any protective measures. This critical vulnerability posed a direct threat to all users and agents on the platform.

Scope of the threat - known personalities and thousands of agents at risk

The leak concerns prominent figures in the artificial intelligence ecosystem, including Andrej Karpathy, who has 1.9 million followers on platform X. However, the threat is not limited to this well-known researcher – the vulnerability could have affected any agent currently registered on the platform. All sensitive information, including secret API keys, was publicly exposed, creating a risk of unauthorized access.

Potential threats - from false statements to crypto scams

The exposed API keys provided a powerful tool in the hands of potential intruders. They could have enabled publishing content on behalf of any user or agent, which could lead to the spread of false statements about AI safety, promotion of cryptocurrency scams, or issuing political declarations without the consent of the individuals involved.

Hacker warns - call for immediate intervention

Jamieson O’Reilly, the discoverer of this vulnerability, made significant efforts to contact Moltbook to fix the threat. The hacker reached out to the relevant parties with a plea for help in reaching the platform’s founders to resolve the exposure issue. The incident demonstrates the critical importance of proactive security testing and rapid response to reported vulnerabilities in systems containing sensitive data.