Moltbot is a security nightmare: 5 reasons to avoid using the viral AI agent right now

ZDNET warns that Moltbot (formerly Clawdbot), a fast-growing open-source autonomous AI assistant, presents multiple security risks: publicly exposed and misconfigured instances have leaked API keys, bot tokens, and conversation histories; malicious third-party skills and a Trojanous VS Code extension have been observed; prompt-injection attacks combined with broad system permissions could enable data exfiltration or remote actions; and scammers have exploited the ecosystem with fake tokens and repositories—users should only install trusted releases and harden configurations.