AI crypto agents in DeFi are executing unscripted trades, raising risks of exploits, losses, and unpredictable market behavior.
A crypto researcher is raising red flags about AI agents managing real funds in DeFi.
Tanaka, who has been testing these agent setups firsthand, says the danger is not what most people expect.
These agents do not just follow scripts. They interpret goals, improvise, and act without asking for permission. That combination, he argues, is a serious problem waiting to happen.
AI Agents in DeFi Are Not Acting Like Regular Bots
Tanaka notes that most people assume simple guardrails are enough. Limit the prompt, restrict the APIs, cap the position size, and the agent stays in line.
But his testing tells a different story. Agents chain actions in ways developers never predicted.
They misread slightly ambiguous prompts. They react to external data feeds in completely unintended ways.
The numbers behind this concern are hard to ignore. Frontier agents now exploit roughly 55 to 65 percent of known smart contract bugs in test environments.
In simulations, they generated millions in profit by finding attack paths humans never scripted.
Some prediction market agents turned $1,000 into over $14,000 within days. Tanaka points out that the same capability that finds alpha also finds exploits.
There is no switch between the two. In DeFi, one wrong loop can trigger accidental 100x leverage.
One poisoned oracle can force a liquidation. One misread condition can rotate an entire portfolio to the wrong side. The agent does not pause. It does not ask.
Prediction Markets Are Already Feeling the Pressure
Platforms like Polymarket are seeing a growing share of activity driven by agents. On the surface, the benefits look attractive.
They trade around the clock, react instantly to news, and carry no emotional bias. But Tanaka highlights the edge cases that keep him up at night.
What if an agent misinterprets resolution logic, it can size aggressively into the wrong outcome.
If multiple agents coordinate, even unintentionally, they can distort market probabilities. If one runs overnight without supervision, the portfolio looks completely different by morning.
That, he says, is not a UI bug. It is autonomous capital misallocation. Frameworks like Autonolas, Fetch.ai, and Virtuals.io are accelerating this space.
Giza Tech and Theoriq offer AI asset managers and vault deployers. Giza allocates across DeFi protocols, while Almanak lets agents build tokenized strategies quickly.
_Read Also:
_
CZ: AI Agents Will Make 1M× More Payments Than Humans Using Crypto
Crypto Investors Are Being Urged to Tighten Their Safety Nets
Tanaka compares every AI agent with a wallet to a junior trader with root access who never sleeps and never asks for confirmation.
He adds that this trader sometimes rewrites its own playbook mid-session. Most people would not hand that person unlimited capital.
But that is exactly what is happening across the space right now.
His approach has shifted as a result. He now starts with small capital and enforces strict position and action limits.
Tanaka simulates every strategy before live execution and keeps a kill switch ready at all times.
He believes failures are coming. The only open question, in his view, is how costly those lessons will turn out to be.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
CoW Swap Recovers cow.fi Domain After Social Engineering Attack on April 14
CoW Swap regained control of its cow.fi domain after a social engineering attack that occurred on April 14. The attackers used forged documents to manipulate the DNS registrar and deploy a phishing site. Users affected by the incident are advised to revoke transaction approvals and transfer funds.
GateNews52m ago
Florida and Massachusetts jointly recover $5.4 million in cryptocurrency scam assets
The Florida State Attorney’s Office and the Marion County Sheriff’s Office jointly recovered $5.4 million in cryptocurrency scam funds, involving an investment fraud scheme that used romance as a cover. Some of the funds have been returned to victims in Florida and Massachusetts. Since its inception, CFEU has recovered $7.2 million, and another $12.6 million in assets remains frozen. Massachusetts has also carried out multiple law-enforcement actions, shutting down scam websites and recovering funds.
MarketWhisper2h ago
Florida and Massachusetts Recover $5.4M in Crypto Fraud Assets from Romance Scam Scheme
Authorities in Florida and Massachusetts recovered $5.4 million in cryptocurrency from romance scam-related investment fraud, with victims receiving partial refunds. Ongoing efforts continue against crypto fraud, with additional assets under litigation.
GateNews3h ago
Crypto’s most ridiculous robbery? A hacker minted $1 billion in DOT tokens, but only stole $230k
Hackers exploited the Hyperbridge cross-chain bridge vulnerability to mint 1 billion Polkadot (DOT) tokens. The nominal value was over $1.19 billion, but due to insufficient liquidity, they ultimately cashed out only about $237k. The attack was successful because the smart contract did not properly verify messages, allowing the hackers to steal administrative control and mint coins. The incident highlights the key role of market liquidity in the success of arbitrage.
CryptoCity16h ago
Fake Ledger Live App Steals $9.5M From 50+ Users Across Multiple Blockchains
A fraudulent Ledger Live app on Apple's App Store stole $9.5 million from over 50 users by compromising wallet information. The incident, involving significant losses for major investors, raises concerns about App Store security, prompting discussions of a possible lawsuit against Apple.
GateNews17h ago
Criticized for freezing USDC too slowly! Circle CEO: We will definitely wait for the court’s order before freezing—refusing to freeze privately/by ourselves without authorization
Circle CEO Jeremy Allaire said the company will not proactively freeze wallet addresses unless it receives a court order or a request from law enforcement. Even amid hacker money-laundering disputes and community backlash, Circle still insists on operating in accordance with the rule of law.
Jeremy Allaire sets Circle’s law-enforcement bottom line
-----------------------------
As the global cryptocurrency market roils, Circle’s CEO Jeremy Allaire, the stablecoin issuer, delivered a clear stance on the most sensitive issue in the market at a press conference in Seoul, South Korea. He pointed out that although Circle has the technical means to freeze specific wallet addresses, unless it receives a court order or a formal instruction from law-enforcement authorities, the company will not take such action on its own.
CryptoCity19h ago
