Concerns Rise Over AI’s Impact on Decentralised Finance Security
Manuel Aráoz, the co-founder and former CTO of OpenZeppelin, has sounded the alarm on the increasing vulnerability of decentralised finance (DeFi) due to advancements in artificial intelligence (AI). He asserts that AI-powered coding agents are significantly compromising the foundational security of DeFi, declaring that nearly all aspects of DeFi have become unsafe as a result.
Aráoz explained that AI coding agents have developed remarkable capabilities in detecting weaknesses within publicly accessible smart contract codes. This has created an alarming disparity between those defending these systems and those attempting to exploit them. While developers must address every potential flaw, AI-enhanced adversaries need only identify a single vulnerability to breach a protocol effectively.
Escalating DeFi Losses
These warnings come as DeFi platforms continue to experience considerable financial losses. Data from DefiLlama reveals that over US$1.1 billion (approximately AU$1.54 billion) has been lost to DeFi-related exploits in the last year alone. A particularly troubling month, April 2026, saw losses exceeding US$600 million (around AU$840 million), with significant amounts traced back to KelpDAO (US$292 million / AU$408.8 million), Drift (US$285 million / AU$399 million), and Euler (US$197 million / AU$275.8 million).
Adding to the alarm, Anthropic has indicated that its restricted Claude Mythos AI model can autonomously discover software vulnerabilities and generate viable exploits, outperforming existing automated security systems. This development raises critical questions about the ongoing effectiveness of DeFi’s security architecture, which was originally designed to counter human attackers operating at a human pace.
In response to Aráoz’s comments, OpenZeppelin contended that his assessment does not represent the company’s standing. They emphasised their long-standing commitment to DeFi security, remarking that their efforts are now more crucial than ever.
OpenZeppelin released a statement reinforcing their dedication: “We have secured DeFi for a decade, and that work now matters more than ever. We are in it alongside the protocols, institutions, and developers building the next era of finance.”
The Future of DeFi Security
As concerns about security grow amidst evolving threats from AI, the DeFi community faces an urgent need for robust countermeasures. The disparity between vulnerability detection capabilities of AI and the defences deployed by developers could lead to further financial losses if not addressed.
In conclusion, while Aráoz’s warnings highlight critical issues within the DeFi ecosystem, OpenZeppelin’s counterarguments suggest that there is still a robust framework in place to mitigate risks. However, the interplay between AI advancements and DeFi security will undoubtedly continue to be a significant focal point in shaping the future of financial technology.
As this dynamic landscape evolves, stakeholders must remain vigilant and innovative, ensuring that the integrity of decentralised finance is maintained in the face of emerging threats.
