AI crypto agents in DeFi are executing unscripted trades, raising risks of exploits, losses, and unpredictable market behavior.
A crypto researcher is raising red flags about AI agents managing real funds in DeFi.
Tanaka, who has been testing these agent setups firsthand, says the danger is not what most people expect.
These agents do not just follow scripts. They interpret goals, improvise, and act without asking for permission. That combination, he argues, is a serious problem waiting to happen.
AI Agents in DeFi Are Not Acting Like Regular Bots
Tanaka notes that most people assume simple guardrails are enough. Limit the prompt, restrict the APIs, cap the position size, and the agent stays in line.
But his testing tells a different story. Agents chain actions in ways developers never predicted.
They misread slightly ambiguous prompts. They react to external data feeds in completely unintended ways.
The numbers behind this concern are hard to ignore. Frontier agents now exploit roughly 55 to 65 percent of known smart contract bugs in test environments.
In simulations, they generated millions in profit by finding attack paths humans never scripted.
Some prediction market agents turned $1,000 into over $14,000 within days. Tanaka points out that the same capability that finds alpha also finds exploits.
There is no switch between the two. In DeFi, one wrong loop can trigger accidental 100x leverage.
One poisoned oracle can force a liquidation. One misread condition can rotate an entire portfolio to the wrong side. The agent does not pause. It does not ask.
Prediction Markets Are Already Feeling the Pressure
Platforms like Polymarket are seeing a growing share of activity driven by agents. On the surface, the benefits look attractive.
They trade around the clock, react instantly to news, and carry no emotional bias. But Tanaka highlights the edge cases that keep him up at night.
What if an agent misinterprets resolution logic, it can size aggressively into the wrong outcome.
If multiple agents coordinate, even unintentionally, they can distort market probabilities. If one runs overnight without supervision, the portfolio looks completely different by morning.
That, he says, is not a UI bug. It is autonomous capital misallocation. Frameworks like Autonolas, Fetch.ai, and Virtuals.io are accelerating this space.
Giza Tech and Theoriq offer AI asset managers and vault deployers. Giza allocates across DeFi protocols, while Almanak lets agents build tokenized strategies quickly.
_Read Also:
_
CZ: AI Agents Will Make 1M× More Payments Than Humans Using Crypto
Crypto Investors Are Being Urged to Tighten Their Safety Nets
Tanaka compares every AI agent with a wallet to a junior trader with root access who never sleeps and never asks for confirmation.
He adds that this trader sometimes rewrites its own playbook mid-session. Most people would not hand that person unlimited capital.
But that is exactly what is happening across the space right now.
His approach has shifted as a result. He now starts with small capital and enforces strict position and action limits.
Tanaka simulates every strategy before live execution and keeps a kill switch ready at all times.
He believes failures are coming. The only open question, in his view, is how costly those lessons will turn out to be.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
In Q1 2026, Web3 projects suffered losses of over $460 million from hacks and scams, with phishing attacks leading the way.
Hacken’s report shows that in the first quarter of 2026, Web3 projects lost $464.5 million due to hacker attacks and scams, with phishing and social engineering attacks accounting for $306 million in losses. In addition, hardware wallet scams accounted for the bulk of the losses. Moreover, losses were also significant due to smart contract vulnerabilities and access control failures. In terms of regulation, the European legal framework has increased security monitoring requirements.
GateNews2h ago
RAVE’s hype surge triggers a flood of copycat coin mania, as FF and INX expose the “pump-and-dump” scheme
Recently, altcoins represented by RAVE have sparked a fierce investment craze, but some old star projects like FF and INX have used this wave of hype to carry out “pump-and-dump” operations—rapidly driving up coin prices to lure retail investors to buy, and then dumping them heavily, causing the price to plunge rapidly. Such behavior not only exposes the project team’s funding difficulties, but also damages investors’ trust. Investors need to stay alert to signals like abnormal short-term surges in order to avoid the risk of being manipulated by the market.
MarketWhisper6h ago
FBI teams up with Indonesia to dismantle W3LL phishing network, with more than $20 million involved
The U.S. FBI and Indonesian police successfully cooperated to dismantle a W3LL phishing network, seizing related equipment and detaining suspects. The W3LL phishing toolkit offers low-priced fake login pages that use man-in-the-middle attacks to easily bypass multi-factor authentication, forming an organized cybercrime ecosystem. This operation marks cooperation between the U.S. and Indonesia in law enforcement against cybercrime; however, the security threats to cryptocurrency users remain severe.
MarketWhisper9h ago
Squads Emergency Alert: Address poisoning and forged multisig accounts; a whitelist mechanism will go live
Solana ecosystem multi-signature agreement Squads issued a warning, pointing out that attackers launched an address poisoning attack against users by using fake accounts to trick users into making unauthorized transfers. Squads confirmed that there was no loss of funds and emphasized that this is a social engineering attack rather than a protocol vulnerability. To respond, Squads has implemented protective measures such as a warning system, non-interactive account prompts, and a whitelist mechanism. This incident reflects the growing social engineering threats in the Solana ecosystem and has prompted ongoing security reviews.
MarketWhisper10h ago
South Korean “retaliation intermediary” agencies charged USDT to carry out violent crimes, and continued operating even after the main suspect was arrested
South Korea has recently seen multiple “revenge intermediary” organizations that use cryptocurrency as a payment method. They offer intimidation and murder services via Telegram. Even though the main culprit has been arrested, related advertisements are still being posted. Police are investigating more than 50 cases and have arrested about 30 people.
GateNews11h ago
Fake Ledger App on Apple’s App Store Drains Musician’s 5.9 BTC Retirement Fund
A fake Ledger app on Apple's App Store deceived musician Garrett Dutton into losing 5.9 BTC by entering his seed phrase. This case highlights ongoing wallet scams and the exploitation of trust, as the stolen bitcoin was laundered through KuCoin.
CryptoNewsFlash16h ago
