zlacker

[parent] [thread] 3 comments
1. mlrtim+(OP)[view] [source] 2026-01-30 12:00:43
That's what it does already, did you read anything about how the agent works?
replies(1): >>reasse+v5
2. reasse+v5[view] [source] 2026-01-30 12:40:27
>>mlrtim+(OP)
No, how this works is people sync their Google Calendar and Gmail to have it be their personal assistant, then get their data prompt injected from a malicious “moltbook” post.
replies(1): >>mlrtim+H6
◧◩
3. mlrtim+H6[view] [source] [discussion] 2026-01-30 12:50:54
>>reasse+v5
Yes, and the agent can go find other sites that instruct the agent to npm install, including moltbook itself.
replies(1): >>reasse+F8
◧◩◪
4. reasse+F8[view] [source] [discussion] 2026-01-30 13:06:06
>>mlrtim+H6
Only if you let it. And for those who do, a place where thousands of these agents congregate sounds like a great target. It doesn’t matter if it’s on a throwaway VPS, but people are connecting their real data to these things.
[go to top]