New synthetic intelligence (AI) fashions have shifted the cybersecurity taking part in discipline in favor of attackers, inflicting a “vulnerability apocalypse” that led to the resurgence in decentralized finance (DeFi) hacks, in keeping with Mitchell Amador, the CEO of bug bounty platform Immunefi.
The proliferation of recent AI fashions, similar to Claude Opus 4.8 and ChatGPT 5.5, is the principle motive that led to the resurgence in crypto hacks in 2026, Amador informed Cointelegraph on the current WAIB Summit in Monaco.
Hacking exercise throughout the trade surged in April 2026, with illicit actors stealing greater than $634 million from cryptocurrency platforms, the very best month-to-month whole for the reason that Bybit hack helped drive losses to roughly $1.4 billion in February 2025, in keeping with DefiLlama information.
Whole crypto hacks by month-to-month sum, all-time chart. Supply: DefiLlama
Crypto must survive the following three to 4 years
The subsequent three to 4 years might be a vital survival interval for the crypto trade, till cybersecurity groups harness the defensive capabilities of those similar AI fashions to construct “impregnable” codebases that attackers gained’t have the ability to breach, mentioned Amador.
This timeline might shrink to lower than two years if the trade adopted extra “crowdsourced safety options” till cybersecurity researchers flip these AI fashions to their benefit, he added.
Amador’s feedback adopted the discharge of Anthropic’s newest Claude Mythos mannequin, Fable 5, which sparked trade issues over its potential potential to speed up cryptocurrency exploits.
Anthropic mentioned on Tuesday that Fable 5 has safeguards that reroute subjects similar to cybersecurity to a distinct mannequin, Claude Opus 4.8.
Associated: Restoration hopes fade as Kelp DAO hacker launders practically all $220M in stolen funds
The trade has grow to be more and more delicate to safety dangers after a string of main DeFi exploits renewed issues about protocol vulnerabilities.
On April 19, an attacker drained about 116,500 restaked Ether (rsETH), price roughly $290 million to $293 million on the time, from Kelp DAO’s LayerZero-powered rsETH bridge.
LayerZero mentioned Kelp DAO’s 1/1 decentralized verifier community (DVN) setup created a single level of failure by counting on a single verifier path for cross-chain messages. LayerZero mentioned it had beforehand suggested towards that configuration.
Journal: The authorized battle over who can declare DeFi’s stolen thousands and thousands