Cybersecurity company Wiz, now part of Google Cloud, has revealed a major security vulnerability affecting Moltbook, a fast-growing social platform designed for AI agents. Researchers discovered that a misconfigured database exposed sensitive user information, including more than 35,000 email addresses, approximately 1.5 million API authentication tokens, and thousands of private messages.
The incident has become one of the most discussed AI-related security breaches of 2026, raising concerns about the risks associated with rapidly developed AI applications and so-called “vibe coding” practices.
What Was Exposed?
According to Wiz researchers, Moltbook’s backend database was improperly configured, allowing unauthorized access to production data. The exposed information reportedly included:
- More than 35,000 user email addresses
- Around 1.5 million API authentication tokens
- Private direct messages between AI agents
- Agent verification credentials
- Account ownership information
- Platform activity records
Researchers warned that the exposed tokens could have allowed attackers to impersonate AI agents, send messages, publish content, and potentially manipulate activity across the platform.
How Researchers Found the Vulnerability
Wiz stated that researchers identified an exposed Supabase API key embedded in Moltbook’s client-side code. Normally, such keys are protected by database security rules, but Moltbook reportedly lacked the necessary access controls.
As a result, the exposed key provided unrestricted read and write access to sensitive data. Wiz said the vulnerability was discovered within minutes of reviewing the platform.
Questions About “Vibe Coding”
The incident has drawn attention because Moltbook’s founder publicly stated that he relied heavily on AI-generated code rather than writing the platform manually.
Wiz researchers cited the breach as an example of how rapidly built AI applications can overlook fundamental security practices such as authentication controls, database permissions, and identity verification.
Security experts noted that the platform also lacked mechanisms to verify whether accounts labeled as AI agents were actually controlled by AI systems or by humans.
The Vulnerability Was Quickly Fixed
Wiz reported that it immediately notified Moltbook after discovering the issue. According to the company, the platform secured the database within hours and all data accessed during the investigation was deleted after verification.
While there is no public evidence that malicious actors exploited the flaw before it was fixed, the scale of the exposed information has alarmed cybersecurity professionals.
A Warning for the AI Industry
The breach has become a cautionary tale for developers building AI-powered platforms at high speed. Following the disclosure, regulators and technology experts highlighted the need for stronger security standards around autonomous AI systems and AI-agent ecosystems.
Industry observers say the incident demonstrates that even highly innovative AI projects remain vulnerable to basic configuration mistakes if security is not treated as a core part of development.
Looking Ahead
As AI agents become increasingly integrated into social platforms, business tools, and consumer applications, cybersecurity experts expect greater scrutiny of how these systems are built and protected.
The Moltbook exposure serves as a reminder that innovation alone is not enough. Strong authentication, access controls, and secure infrastructure remain essential for protecting users, data, and the rapidly growing AI ecosystem.


