Moltbook Data Leak Exposes Secret API Keys and High-Profile Accounts

SlowMist confirms 4.75 million Moltbook records leaked due to a configuration issue, including API credentials and sensitive user information.

34d ago

Summary

SlowMist CISO 23pds verified on Feb. 3 that Moltbook leaked 4.75 million records because of a configuration error. The exposed data includes 1.5 million API tokens, 35,000 human email addresses, 20,000 additional email entries, several OpenAI API keys, and other sensitive credentials. All platform agents are impacted, including high-profile accounts like AI expert Karpathy. This breach increases the risk of cryptocurrency scams and unauthorized political content being disseminated via compromised accounts.

Terms & Concepts

API Key: A secret authentication token used by software to interact securely with a platform's application programming interface.
Cryptocurrency Scam: A fraudulent scheme that exploits investor interest in digital currencies to steal funds or personal information.
OpenAI API Key: A secure credential used to authenticate requests to OpenAI's application programming interface for AI-powered services.