AI agents are set to power crypto payments, but a hidden flaw could expose wallets
Researchers say a largely invisible layer of AI infrastructure can intercept sensitive data and has already been linked to stolen credentials and a $500,000 wallet drain
What to know:
- Security researchers warn that “LLM routers”—services that sit between users and AI models—are emerging as powerful attack points that can intercept and alter sensitive data.
- The team documented real-world abuses, including 26 routers secretly injecting malicious tool calls, stealing credentials and draining a client’s crypto wallet of $500,000.
- As industry leaders predict AI agents will soon mediate trillions of dollars in commerce and dominate crypto transactions, the researchers say the largely unregulated router infrastructure poses cascading, weakest-link risks to users’ funds and systems.
Coinbase founder Brian Armstrong said on X that “very soon” there will be more AI agents than humans making transactions on the internet. Binance founder Changpeng Zhao was more bold, predicting agents will make one million times more payments than people, all in crypto.
But a group of security academic and crypto researchers have released a paper explaining that a largely overlooked piece of AI infrastructure is already being used to steal credentials and even drain crypto wallets.
The authors of the papers are researchers affiliated with the University of California, Santa Barbara, the University of California, San Diego, blockchain firm Fuzzland and World Liberty Financial.
Powerful attack points
The team found that so-called “LLM routers,” or services that sit between users and AI models, can act as a powerful attack point exploited by malicious actors. These routers are designed to forward requests to models like OpenAI or Anthropic, but they also have full access to everything passing through them, including sensitive data.
