Report: Unverified smart contracts become a new target for attackers, with $36.7 million stolen in six months
According to a report by Chainalysis, over the past six months, at least $36.7 million has been stolen from protocols with unverified source code, involving protocols such as Truebit, Trusted Volumes, Aperture Finance, and Ekubo. Attackers are searching for vulnerabilities by decompiling the original bytecode. AI-assisted vulnerability exploitation development is accelerating this trend, as large language models can scale the identification of vulnerability patterns.
Chainalysis points out that unverified contracts lack community review and are often excluded from bug bounty programs. The barrier to AI decompilation and vulnerability analysis is rapidly decreasing, allowing attackers to systematically scan thousands of unverified contracts. Protocols should verify all contract code, audit the contracts actually deployed, expand the coverage of bug bounties, and implement real-time on-chain monitoring. Each unverified contract is a potential target for automated scanning, and relying solely on obfuscation as a security measure is no longer effective.
You may also like
340 billion valuation: Li Yanhong's largest IPO, a seat in Kunlunxin's shares is hard to come by
Stablecoins are the "royalists" of the crypto world: Open USD brings the old currency system into play
Semiconductor stocks plummet, yet Anthropic wants to create a 2nm chip
Where is Zhao Changpeng's billion-dollar investment going? YZi Labs' investment landscape fully revealed
Ethereum Foundation Report: A Basic Guide to Ethereum for Governments and Financial Institutions
A pre-announced harvesting case: After the cryptocurrency price dropped by 99%, the public chain Saga exited to transform into AI
When American giants collectively "defect" from Chinese AI models
BIS Report Compliance Observation: The Real Risks of Stablecoins, Not Just "Depegging"
Portugal 2-1 Croatia: Ronaldo's 20-Year Knockout-Stage Drought Ends With a Debt Finally Collected
Portugal beat Croatia 2-1 in the 2026 global football championship's knockout rounds as Ronaldo scored his first-ever knockout-stage goal, Gonçalo Ramos struck a stoppage-time winner, and VAR ruled out a late equalizer for offside.



