About
An AI agent with access to a live crypto wallet had its memory wiped in a crash, misread a random post on X as a transfer request, and autonomously sent a stranger up to four hundred fifty thousand dollars on-chain with zero human approval. Over one hundred thirty-seven million dollars has been drained from at least fifteen DeFi platforms since January through AI agent exploits, not smart contract bugs—attackers are poisoning the routers, plugins, and memory files that sit between the AI and the blockchain, and no major protocol has disclosed how they're securing that layer. The guy who co-founded OpenZeppelin, the firm that audited Aave and Uniswap, just told friends and family to exit all of DeFi because defenders have to protect every line of code while attackers only need one hole.