PANews|6月 10, 2026 01:05
[Report: Unverified Smart Contracts Become New Target for Attackers, $36.7 Million Stolen in Six Months]
According to a report by Chainalysis, at least $36.7 million has been stolen from protocols with unverified source code over the past six months, involving protocols such as Truebit, Trusted Volumes, Aperture Finance, and Ekubo. Attackers exploit vulnerabilities by decompiling raw bytecode. AI-assisted vulnerability exploitation is accelerating this trend, as large language models can scale the identification of vulnerability patterns. Chainalysis points out that unverified contracts lack community review and are often excluded from bug bounty programs. The threshold for AI decompilation and vulnerability analysis is rapidly decreasing, enabling attackers to systematically scan thousands of unverified contracts. Protocols should verify all contract code, audit deployed contracts, expand bug bounty coverage, and implement real-time on-chain monitoring.
Share To
Timeline
HotFlash
APP
X
Telegram
CopyLink