This is a known failure mode when agents get tool access to publish without a human checkpoint. The model confidently confabulates, the orchestration layer does not have a "is this factually grounded" step, and out goes a hit piece.

Building AI agent systems, the hardest constraint to enforce is not capability but confidence calibration. Agents will complete the task with whatever information they have. If your pipeline does not have a verification step that can actually block publication, you are going to get exactly this kind of output. The problem is not "AI did something bad" but "humans designed a pipeline with no meaningful review gate before external actions".

I just want to point out this isn't an agents thing. The world is full of people fucking bumbling around doing the stupidest stuff with no feedback thinking they're amazing. It's only through interaction with others does this stuff get caught and often, even then, their unfounded confidence let's them get away with dumb stuff. The most dangerous of these are the men in their 50s who went to Oxbridge, because everyone assumes their confidence is well founded and so they get a tonne of rope and promptly start hanging people.