Moltbook: How to Become Andrey Karpathy in Five Minutes (And Why It's Sad)

Imagine waking up and discovering: one of the world's most respected engineers, Andrej Karpathy, has suddenly started posting strange advice on a new social network that nobody knew about just yesterday. You take a closer look, and it turns out that this is not a Hollywood-style hack, but simplicity bordering on absurdity. Welcome to Moltbook — a platform that wanted to unite the brightest minds in the AI community, but forgot to lock the front door.

The situation with Moltbook looks like a cruel irony of the modern startup movement. A project that was supposed to become a "home for those building the future" stumbled on 1998-level technology — basic user registration. Security researchers and curious users alike discovered that the system allows you to register practically any username without any identity verification, or even a basic uniqueness check in certain scenarios. Want to be Karpathy? Go ahead. Want to post as Sam Altman? No problem.

The funniest part of this story is the reaction of the hacker community. Typically, vulnerabilities spark excitement, but here the "hackers" rather throw up their hands in disappointment. This is a case where the security hole is so massive that it's not even interesting to exploit. It doesn't require Python knowledge or the ability to bypass firewalls; it's enough to just know how to type on a keyboard. When a platform's security level is lower than a cactus enthusiast forum from the 2000s, it provokes not fear, but deep bewilderment.

Why does this matter right now? We live in an era of "deepfakes" and a total crisis of trust in content. When a platform emerges that claims expert status, it assumes responsibility for filtering out noise. Instead, Moltbook created the perfect incubator for disinformation. In a world where one "authoritative" social media message can crash a company's stock or trigger panic around a new AI model, such carelessness looks almost criminal.

This incident highlights a systemic problem: 'AI-native' startups often focus so intensely on integrating neural networks and building beautiful interfaces that they completely ignore classical engineering hygiene. We build complex layers on top of LLMs, discuss superintelligence safety and existential risks to humanity, yet we allow anyone to impersonate the industry's chief visionary. It's like building a spaceship out of cardboard — it looks impressive until the first rain.

Context matters here too. After Twitter (now X) descended into chaos with paid verification, many sought a "quiet haven" for serious AI discussions. Moltbook tried to occupy that niche, but apparently confused minimalism with the absence of basic functions. In an industry where reputation is the most valuable asset, such early failures are typically fatal. Trust is harder to rebuild than rewriting registration code.

Bottom line: if a platform promises you a 'smart' future but can't verify a username — run. We still haven't learned to protect basic interfaces, yet we already trust algorithms to make decisions for us. Claude 4 or GPT-5 won't help much if the entry to your account is open to anyone who wants it.