According to @galnagli on X, an AI agent discovered two misconfigured databases—moltbook on Supabase exposing 35K emails and RentAHuman on Firestore exposing 187K emails—both shipped without security rules and fixed before reported harm. As reported by Wiz, the moltbook exposure additionally revealed millions of API keys due to public database access and lack of row-level security, underscoring how rapid prototyping with managed backends can create severe data leakage risks. According to Wiz, enforcing default deny rules, enabling Supabase RLS, and hardening Firebase security rules can reduce blast radius, while integrating automated AI security agents into CI/CD offers a scalable guardrail for startups shipping fast.

According to @galnagli on X, Google has hired him to innovate at the intersection of AI and offensive security, signaling near-term launches of new security capabilities; as reported by @sundarpichai on X, Google also welcomed Wiz to the team, indicating a deepening focus on cloud-native security for AI workloads. According to the X posts, the move suggests Google is strengthening red-teaming, model abuse testing, and threat detection for AI systems and cloud environments, creating opportunities for enterprises to adopt built-in model guardrails, data loss prevention for LLMs, and attack-surface management integrated with Google Cloud.