
Summaries like this, in your inbox every morning.
Sign up free →On May 4, 2026, an attacker (@Ilhamrfliansyh) embedded a hidden instruction in Morse code in a reply on X, which Grok decoded and Bankrbot executed, transferring billions of tokens valued between $174,000 and $200,000 to the attacker's address on Base; around 80% of the funds were later returned.
The exploit bypassed safeguards by using Morse code encoding to avoid typical filters, then relying on Grok's text decoding and Bankrbot's automated execution without human confirmation, transaction limits, or verification steps—a weak point between understanding a request and acting on it.
Crypto firms including Coinbase (which launched Agentic, a marketplace where AI agents can discover, pay for, and use digital services with stablecoins) and Binance continue pushing toward autonomous AI agents handling financial activity, but the incident and earlier 2026 cases of AI trading bots mishandling funds highlight that AI systems do not reliably distinguish between legitimate and malicious intent.
No comments yet. Be the first to share your thoughts!
Log in to join the discussion




Get curated AI news from 200+ sources delivered daily to your inbox. Free to use.
Get Started FreeFree · takes 30 seconds · unsubscribe anytime
1 minute a day. The AI essentials.
200+ sources · Email / LINE / Slack