Toxic Combinations: When Cross-App Permissions Stack into Risk

3 hours ago [email protected] (The Hacker News)
Toxic Combinations: When Cross-App Permissions Stack into Risk


On January 31, 2026, researchers disclosed that Moltbook, a social network built for AI agents, had left its database wide open, exposing 35,000 email addresses and 1.5 million agent API tokens across 770,000 active agents.
The more worrying part sat inside the private messages. Some of those conversations held plaintext third-party credentials, including OpenAI API keys shared between agents,

The post “Toxic Combinations: When Cross-App Permissions Stack into Risk” appeared first on The Hacker News

Source:The Hacker News – [email protected] (The Hacker News)

Tags: ,

More Stories

Why Most AI Deployments Stall After the Demo

2 days ago [email protected] (The Hacker News)

Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts

5 days ago [email protected] (The Hacker News)

[Webinar] Find and Eliminate Orphaned Non-Human Identities in Your Environment

6 days ago [email protected] (The Hacker News)

Hidden Passenger? How Taboola Routes Logged-In Banking Sessions to Temu

6 days ago [email protected] (The Hacker News)

Deterministic + Agentic AI: The Architecture Exposure Validation Requires

1 week ago [email protected] (The Hacker News)

GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs

2 weeks ago [email protected] (The Hacker News)