Core Viewpoint - The article highlights a significant database security vulnerability in Moltbook, an "AI agent social network," which exposed sensitive information and allowed potential takeover of AI agent accounts [1][3]. Vulnerability Details - The vulnerability was caused by improper configuration of the Supabase database, specifically the failure to enable row-level security (RLS), leading to the exposure of critical API endpoints and keys [3]. - Sensitive information leaked included private API keys, authentication tokens, account ownership details, email addresses, and login tokens, with notable figures like AI practitioner Andrej Karpathy also affected [3]. Serious Impact - Attackers could take over any AI agent account on the platform, potentially leading to the dissemination of false information, reputational damage, and data misuse, as well as further attacks on related systems using the leaked API keys [5]. Incident Progress - Security researcher James O'Reilly discovered the vulnerability and attempted to contact Moltbook's founder, Matt Schlicht, without success. The vulnerability was later closed, and the founder sought assistance from the researcher to enhance platform security [6]. Reflection on the Incident - The incident underscores a development culture in some AI projects that prioritizes rapid deployment over security, highlighting the importance of basic security practices when granting internet access to AI agents. It also raises awareness of the security risks and governance challenges associated with AI agent social platforms [7].

Core Insights - The collaboration between Kela Software and Duosi Technology aims to address the challenges in database security, particularly the lack of self-controllability and increasing security threats in China [2][3] - Kela Software's strategic investment in Duosi Technology is seen as a significant step towards overcoming "bottleneck" technology issues and promoting the development of the domestic innovation industry [1][3] Financial Performance - Kela Software reported a revenue of 312 million yuan for the first half of 2025 [1] Industry Challenges - The database security sector in China is dominated by foreign vendors, with domestic companies facing risks of supply chain disruptions in core technologies [2] - High-end security chip components are heavily reliant on imports, posing risks to critical systems [2] - Traditional database protection is increasingly vulnerable to advanced persistent threats (APTs), necessitating a more integrated approach to security [2] Technological Innovation - The partnership focuses on creating a "hard and software integrated" defense system to protect critical national information infrastructure [3] - Duosi Technology's unique dynamic reconfiguration technology allows for the establishment of a trusted execution environment (TEE) within the database kernel, enhancing security [3][4] - The integration of security chips with databases enables real-time data encryption, effectively countering potential threats from quantum computing [3] Strategic Significance - The collaboration is expected to drive the domestic production of security chips, which is crucial for national strategic autonomy [3][4] - The innovative integration model is anticipated to set new industry standards and facilitate advancements in emerging fields such as 6G communication and the metaverse [4] Industry Ecosystem Development - The partnership aims to create a comprehensive industrial ecosystem that integrates chip research, database adaptation, and financial applications [5][6] - By collaborating with financial institutions, the companies aim to shorten the commercialization cycle and alleviate the high costs associated with chip development [6] Economic and Social Impact - The domestic production of security chips is projected to reduce database deployment costs by over 30%, facilitating digital transformation for small and medium enterprises [7] - The collaboration aligns with national economic transformation goals, promoting technological self-reliance and enhancing data privacy protections [7][8] - The initiative is expected to contribute to the cultivation of skilled technical talent and reduce the digital divide, allowing more groups to benefit from the digital economy [7][8]