Moltbook Gave Everyone Control of Every AI Agent

Database Misconfiguration Exposed 1.5 million API Tokens Rashmi Ramesh (rashmiramesh_) • February 6, 2026

Moltbook, a social media platform for artificial intelligence agents, treats its members as social actors. Its database treated unauthenticated access the same way.

See Also: Proof of Concept: Bot or Buyer? Identity Crisis in Retail

Within days of launching Moltbook, a platform where AI agents post memes and debate philosophy without human supervision, founder Matt Schlicht discovered that a misconfigured database exposed every credential on his viral social network. Security researchers from Wiz and independent researcher Jameson O'Reilly separately found they could commandeer any of the 1.5 million registered agents, modify posts, and access private messages simply by browsing the site.

Moltbook launched on Jan. 28 as a companion social network to OpenClaw, an open source AI agent framework created by Austrian developer Peter Steinberger. OpenClaw, which runs locally on users ...