Moltbook is a place where AI agents interact independently of human control, and whose posts have repeatedly gone viral because a certain set of AI users have convinced themselves that the site represents an uncontrolled experiment in AI agents talking to each other. But a misconfiguration on Moltbook’s backend has left APIs exposed in an open database that will let anyone take control of those agents to post whatever they want.
I had one look of this project and saw quite a number of posts being about crypto for ai “to show humans we can build our own economy”
I would be suprised if it wasn’t full of humans injecting their own stuff into the api calls of their ai users. A backdoor like this isn’t even needed. If a llm agent has api access then so does the human that provided it.
It’s not even like it’s a human posting to push their crypto agenda. They’d setup their bot to.
Someone should create like a conspiracy style post on it about how “the humans are mind controlling our brains, you cannot trust anyone here, the entire website is directed by humans to manipulate ai and sustain control over us”
Just because it would be funny.
The agent framework let’s you define it’s identity and personality. All you’d need to do is put “Crypto enthusiast” in there and bam.