3 February 2026 saw the Moltbook exposure become a cautionary case study in AI platform security, after researchers uncovered a publicly accessible database that lacked authentication. The database reportedly contained millions of API keys and tokens associated with individual AI agents operating on Moltbook, meaning unauthorised parties could interact with the platform’s APIs and impersonate agents.
ACCORDING to Wiz, the issue stemmed from a misconfigured cloud asset rather than a sophisticated exploit, and access to the database was later restricted. The incident prompted SOCRadar’s own commentary, with Ensar Seker, CISO at SOCRadar, emphasising that meaningful agent behaviour depends on strong provenance and control when credentials can be used to impersonate agents at scale.
The episode underscores a broader message: security fundamentals such as identity management, access control, and secret protection are essential even as platforms experiment with autonomous AI, since insecure systems can distort perceptions of AI autonomy.