In February 2025, hackers stole roughly $1.5bn from the crypto exchange Bybit – the biggest crypto heist on record. The FBI later attributed the attack to North Korea.
What made the theft so unnerving was not that someone “broke the blockchain”. The blockchain kept doing exactly what it was supposed to do. The weakness was elsewhere: in the software, workflows and human-approval machinery wrapped around the assets. That is the uncomfortable lesson crypto keeps relearning. The chain may be solid. The ecosystem around it is often alarmingly soft.
Now imagine that people hunting for those weaknesses acquire a tireless AI partner who is a much better hacker than they are. They are about to get one.
When news of the super-hacking capabilities of Anthropic’s Mythos exploded two weeks ago, it first sparked panic and then – at least in some sectors – a bit of eyerolling. Mythos had, within a mere few weeks, identified thousands of zero-day vulnerabilities (previously unknown bugs) across major operating systems, browsers and other critical software, including security software. Critics countered that this sounded suspiciously like alarm-marketing and exaggerated fact. Both camps may be right.
The truth is that even if the hype is ahead of the present, the future is likely to catch up with the scariest claims sooner than the sceptics expect, given the accelerating rate of autonomous and recursive AI development. There is little doubt ChatGPT and others – like China’s DeepSeek – will soon have the same hacking capabilities.
The crypto industry is watching nervously. That is because the crypto ecosystem is an interconnected web of apps, exchanges, wallets, application programming interfaces, bridges, admin tools, cloud infrastructure, mobile clients and browser extensions built around the actual foundational blockchains. And much of that web – except the blockchain itself – is, technically speaking, just normal software with all its potential pathologies.
An AI bug waiting to feast
Start with crypto exchanges. Their customer-facing systems are usually built with standard web languages and frameworks. Their back ends rely on familiar databases, authentication layers, cloud services and internal tooling. In other words, they are exposed to exactly the sort of software stack on which AI-powered bug-hunting is likely to feast.
If a model becomes extraordinarily good at finding logic flaws, injection points, authentication weaknesses, privilege escalations or dangerous misconfigurations, exchanges are obvious prey. The blockchain underneath may be robust; the software through which humans access it is often not.
Decentralised finance (DeFi) may be even more exposed. DeFi is powered by smart contracts, which have always enjoyed an odd dual reputation: marketed as trustless and mathematically precise, while in practice being very human programs written by very fallible developers. There is already a thriving industry of auditors paid handsome sums to prevent smart contracts from blowing up. Automated AI bug-hunters are unlikely to make that profession disappear overnight, but they are certain to quickly make the AI attackers much better at the same game.
This matters because crypto’s adversaries are already highly capable. Chainalysis, the largest crypto analytics firm, reports that more than $3.4bn was stolen from crypto platforms in 2025, with North Korea-linked hackers alone taking just over $2bn.
North Korean operators have become especially adept not just at technical compromise, but at patient infiltration: impersonating job candidates, embedding operatives as IT workers, targeting executives and developers, and then moving stolen funds through increasingly sophisticated laundering routes. Give actors like The Lazarus Group access to dramatically better vulnerability discovery through leaked AI models, derived tools or black-market services, and you do not get a brand-new threat. You get the old threat massively amplified.
Blockchains in trouble?
So does that mean the underlying blockchains – bitcoin, ethereum and the other major chains – are in trouble? Probably not. Here, it is important to distinguish between the blockchain itself and the cluttered software suburbia that has grown around it.
The core security model of a major blockchain is not the same thing as the security model of a web app or database system. Bitcoin’s design rests on distributed validation, consensus rules, cryptographic hashing and digital signatures. Ethereum likewise depends on decentralised clients implementing protocol rules and on cryptographic primitives that are not casually broken because a model got very good at source-code analysis.
That is why the nightmare scenario most often cited against blockchains is not “AI found a bug in the blockchain core code” but “quantum computing eventually breaks key cryptography”. But even there, as I have written previously, the industry is not asleep: bitcoin and other blockchain developers and researchers are actively prototyping and implementing post-quantum paths.
One should not drift from reassurance into blind faith, however. Blockchains and their clients are still software, and software has bugs.
Bitcoin Core (the developers who maintain the bitcoin blockchain) maintains a formal security advisory process and has published multiple advisories over time; its website currently warns of a wallet migration bug in versions 30.0 and 30.1 that may delete wallet files and result in loss of funds. Geth, the major ethereum execution client, logged a 2026 vulnerability in which a specially crafted message could force a node to crash.
So the sensible argument is not that base-layer blockchains are invulnerable. It is that they are less directly vulnerable to the coming wave of AI bug discovery than the exchanges, wallets, smart contracts and middleware wrapped around them.
Soft tissue vulnerabilities
And that is where the real danger sits: in the soft tissue around the cryptographic skeleton. Private keys are stored somewhere. Wallet software has to run somewhere. Users sign transactions through interfaces. Exchanges maintain hot wallets and internal controls. Bridges connect one chain to another. Oracles feed in external data. Admins have privileges. Developers make mistakes. Recovery systems exist, or fail to. Every one of those layers is a plausible point of AI-assisted attack. The blockchain may remain mathematically elegant while the surrounding ecosystem burns.
That, ultimately, is the uncomfortable truth for crypto. The movement promised a world in which trust would be replaced by maths. Instead, some of that trust was merely relocated – into applications, custodians, browser extensions, code libraries, cloud dashboards and the ancient problem of where to keep a secret. Until the industry finds something sturdier than today’s private-key sprawl – whether through better hardware, multi-party computation, biometrics, passkey-style abstractions, or some future identity layer that does not rely on users safeguarding magic strings of characters – crypto will remain an inviting target.
Mythos and the models racing behind it are unlikely to crack bitcoin’s or ethereum’s spines. But they may become extraordinarily good at puncturing everything around them. That would be enough to hobble the entire industry.
Steven Boykey Sidley is a professor of practice at the Johannesburg Business School, University of Johannesburg, a partner at Bridge Capital, and a columnist at Daily Maverick, Currency and Daily Friend.
ALSO READ:
- When agentic AI goes rogue with crypto
- Why AI and crypto are finally getting married
- South Africa’s next big scam: APP fraud
Top image: Rawpixel/Currency collage.
Sign up to Currency’s weekly newsletters to receive your own bulletin of weekday news and weekend treats. Register here.
Interesting perspective on AI and blockchain. Do you think that could affect how we manage wedding budgets in the future?
Very interesting. Quality writing here. The ecosystem is vulnerable even if the core is secure.