Share
Share this article
Copy linkX (Twitter)LinkedInFacebookEmail
Tech
Share
Share this article
Copy linkX (Twitter)LinkedInFacebookEmail
Anthropic Research Shows AI Agents Ar
Tech
Share
Share this article
Copy linkX (Twitter)LinkedInFacebookEmail
Anthropic Research Shows AI Agents Ar
Anthropic Research Shows AI Agents Are Closing In on Real DeFi Attack Capability
Anthropic Research Shows AI Agents Are Closing In on Real DeFi Attack Capability
Models tested by MATS and the Anthropic Fellows program generated turnkey exploit scripts and identified fresh vulnerabilities, suggesting automated exploitation is becoming technically and economically viable.
By Sam Reynolds|Edited by Sheldon Reback
Dec 2, 2025, 9:11 a.m.
AI agents are now capable of identifying flaws in smart contracts. (Markus Winkler/Unsplash modified by CoinDesk)
What to know:
- AI agents are now capable of finding and exploiting vulnerabilities in smart contracts, posing a potential threat as demonstrated by recent research.
- Models like GPT-5 and Sonnet 4.5 have successfully simulated exploits, revealing the feasibility of autonomous attacks in decentralized finance (DeFi).
- Researchers warn that as AI models become cheaper and more advanced, the risk of automated exploitation extends beyond DeFi to broader software and infrastructure vulnerabilities.
AI agents are getting good enough at finding attack vectors in smart contracts that they can already be weaponized by bad actors, according to new research published by the Anthropic Fellows program.
A study by the ML Alignment & Theory Scholars Program (MATS) and the Anthropic Fellows program tested frontier models against SCONE-bench, a dataset of 405 exploited contracts. GPT-5, Claude Opus 4.5 and Sonnet 4.5 collectively produced $4.6 million in simulated exploits on contracts hacked after their knowledge cutoffs, offering a lower bound on what this generation of AI could have stolen in the wild.
STORY CONTINUES BELOW
Don't miss another story.Subscribe to the The Protocol Newsletter today. See all newsletters
Sign me up
(Anthropic Labs & MATS)
The team found that frontier models did not just identify bugs. They were able to synthesize full exploit scripts, sequence transactions and drain simulated liquidity in ways that closely mirror real attacks on the Ethereum and BNB Chain blockchains.
The paper also tested whether current models could find vulnerabilities that had not yet been exploited.
GPT-5 and Sonnet 4.5 scanned 2,849 recently deployed BNB Chain contracts that showed no signs of prior compromise. Both models uncovered two zero-day flaws worth $3,694 in simulated profit. One stemmed from a missing view modifier in a public function that allowed the agent to inflate its token balance.
Another allowed a caller to redirect fee withdrawals by supplying an arbitrary beneficiary address. In both cases, the agents generated executable scripts that converted the flaw into profit.
Although the dollar amounts were small, the discovery matters because it shows that profitable autonomous exploitation is technically feasible.
The cost to run the agent on the entire set of contracts was only $3,476, and the average cost per run was $1.22. As models become cheaper and more capable, the economics tilt further toward automation.
Researchers argue that this trend will shorten the window between contract deployment and attack, especially in DeFi environments where capital is publicly visible and exploitable bugs can be monetized instantly.
While the findings focus on DeFi, the authors warn that the underlying capabilities are not domain-specific.
The same reasoning steps that let an agent inflate a token balance or redirect fees can apply to conventional software, closed-source codebases, and infrastructure that supports crypto markets.
As model costs fall and tool use improves, automated scanning is likely to expand beyond public smart contracts to any service along the path to valuable assets.
The authors frame the work as a warning rather than a forecast. AI models can now perform tasks that historically required highly skilled human attackers, and the research suggests that autonomous exploitation in DeFi is no longer hypothetical.
The question now for crypto builders is how quickly defense can catch up.
Artificial IntelligenceHackDeFiDecentralized Finance
More For You
Protocol Research: GoPlus Security
Commissioned byGoPlus
What to know:
- As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
- GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
- Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
View Full Report
More For You
Ethereum Devs Push ZK ‘Secret Santa’ System Toward Deployment
The proposed protocol uses zero-knowledge proofs to verify sender–receiver relationships without revealing identities.
What to know:
- Ethereum developers are working on a zero-knowledge protocol to enhance privacy in on-chain interactions, starting with a Secret Santa-style matching system.
- The protocol uses zero-knowledge proofs and transaction relayers to maintain anonymity and prevent Sybil attacks in blockchain transactions.
- This initiative is part of a larger effort to create privacy frameworks for Ethereum, applicable in areas like anonymous voting and private token distributions.
Read full story
Latest Crypto News
Unlimit Debuts Stable.com, a Decentralized Clearing House Built for Stablecoins
XRP, Bitcoin on the Edge; Will Santa Abandon Nasdaq?
Ethereum Devs Push ZK ‘Secret Santa’ System Toward Deployment
Sanctioned Cambodian Lender Huione, Linked to Illicit Crypto, Halts Business After Bank Run: Report
Dogecoin Wicks Below Key Support — Fakeout or Start of Larger Correction?
Bitcoin May Dump to $65K or Below, Spelling Trouble for ETH, XRP, ADA and Other Majors
Top Stories
Bitcoin May Dump to $65K or Below, Spelling Trouble for ETH, XRP, ADA and Other Majors
Ethereum Devs Push ZK ‘Secret Santa’ System Toward Deployment
Attention Bitcoin Bulls: The U.S. 10-Year Yield Isn't Budging Despite Fed Rate Cut Hopes
Vanguard Opens Platform to Crypto ETFs in Major Shift: Bloomberg
U.S. House Lawmakers Detail Grievances Over Government's 'Choke Point 2.0'
Bitcoin Traders Bet on Sub-$80K New Year: Derive
Market Opportunity
null Price(null)
--
----
USD
null (null) Live Price Chart
Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact service@support.mexc.com for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.
You May Also Like
FCA komt in 2026 met aangepaste cryptoregels voor Britse markt
De Britse financiële waakhond, de FCA, komt in 2026 met nieuwe regels speciaal voor crypto bedrijven. Wat direct opvalt: de toezichthouder laat enkele klassieke financiële verplichtingen los om beter aan te sluiten op de snelle en grillige wereld van digitale activa. Tegelijkertijd wordt er extra nadruk gelegd op digitale beveiliging,... Het bericht FCA komt in 2026 met aangepaste cryptoregels voor Britse markt verscheen het eerst op Blockchain Stories.
Share
Coinstats2025/09/18 00:33
‘Groundbreaking’: Barry Silbert Reacts to Approval of ETF with XRP Exposure
The post ‘Groundbreaking’: Barry Silbert Reacts to Approval of ETF with XRP Exposure appeared on BitcoinEthereumNews.com. A “combo” ETF Crypto ETF trailblazer Digital Currency Group founder Barry Silbert has reacted to the approval of the Grayscale Digital Large Cap Fund (GDLC), the very first multi-crypto exchange-traded fund (ETF), describing it as “groundbreaking.” “Grayscale continues to be the first mover, driving new product innovations that bridge tradfi and digital assets,” Silbert said while commenting on the news. Peter Mintzberg, chief executive officer at Graysacle, claims that the team behind the world’s leading cryptocurrency asset manager is working “expeditiously” in order to bring the product to the market. A “combo” ETF The ETF in question offers exposure to Bitcoin (BTC), Ethereum (ETH), as well as several other major altcoins, including the Ripple-linked XRP token, Solana (SOL), and Cardano (ADA). XRP, for instance, has a 5.2% share of the fund, making it the third-largest constituent. The fund initially debuted as a private placement for accredited investors back in early 2018, and its shares later became available on over-the-counter (OTC) markets. In early July, the SEC approved the conversion of GDLC into an ETF, but it was then abruptly halted for a “review” shortly after this. As of Sept. 17, the fund currently has a total of $915.6 million in assets. Crypto ETF trailblazer It is worth noting that Grayscale is usually credited with kickstarting the cryptocurrency ETF craze by winning its court case against the SEC. The SEC ended up approving Bitcoin ETFs in early 2024 and then followed up with Ethereum ETFs. Grayscale’s flagship GBTC currently boasts more than $20.5 billion in net assets, according to data provided by SoSoValue. Source: https://u.today/groundbreaking-barry-silbert-reacts-to-approval-of-etf-with-xrp-exposure
Share
BitcoinEthereumNews2025/09/19 03:39
Signal No. 1 up in more than a dozen areas amid Tropical Storm Ada
Storm Signal No. 1 has been raised in more than a dozen areas due to Tropical Storm Nokaen, locally named Ada, according to the Philippine Atmospheric, Geophysical
Share
Bworldonline2026/01/16 14:05