CertiK’s CEO has warned that AI is giving DeFi attackers a spending advantage over defenders, calling it an “unfair game” that threatens the security balance across decentralized finance.
What CertiK’s CEO Actually Claimed About AI and DeFi Attacks
The warning, reported by The Block, frames the problem as an economic asymmetry rather than a single new exploit. Attackers can use AI to scale reconnaissance, automate phishing campaigns, and accelerate exploit preparation at a fraction of what defenders spend on audits and monitoring.
This is an opinion from CertiK leadership, not a disclosure of a specific vulnerability. The argument centers on cost dynamics: AI lowers the price of attacking faster than it lowers the price of defending.
CertiK, one of the largest blockchain security firms, has tracked these trends in its Hack3d 2025 security report, which catalogues exploit patterns and loss totals across Web3. The report provides broader context for the CEO’s warning, documenting how attack methods have evolved over time.
What Evidence Supports the Warning, and Where It Falls Short
The available evidence supports the general direction of the claim without confirming every detail. CertiK’s own reporting documents rising losses from DeFi exploits, and the pattern of increasingly sophisticated social engineering attacks aligns with AI-assisted methods.
Separately, Cointelegraph has reported on North Korean hacking groups using AI-enabled social engineering in recent attacks. That reporting points to a real intersection between AI tools and crypto-targeted exploits, though it does not directly confirm the specific spending asymmetry CertiK’s CEO described.
These sources illustrate an industry pattern rather than definitive proof that every recent DeFi exploit was AI-assisted. The warning is directionally credible, but the full scope of AI’s role in DeFi attacks remains difficult to quantify.
DeFi protocols collectively hold tens of billions of dollars in total value locked across chains like Ethereum, making the sector a high-value target regardless of attacker tooling.
Why the Claim Matters for DeFi Security Teams Next
If the asymmetry claim holds, DeFi protocols face pressure on multiple fronts. Security budgets may need to rise to match the speed at which AI-equipped attackers can identify and exploit weaknesses. Monitoring cycles will likely need to shorten, with real-time threat detection becoming more critical than periodic audits alone.
Social engineering defenses deserve particular attention. The reports on AI-enabled phishing suggest that human-targeted attacks, not just smart contract exploits, are becoming a primary vector. Protocols that focus exclusively on code audits may be leaving their operational security exposed.
The broader DeFi ecosystem is also navigating regulatory shifts that could affect how security spending is prioritized. As crypto legislation advances through Congress, protocols may face new compliance requirements that compete with security budgets for resources.
Major protocols are already investing in infrastructure resilience. Partnerships between DeFi platforms and data providers, similar to how Kraken recently integrated Chainlink for oracle services, reflect a growing recognition that security extends beyond smart contract audits to include data integrity and operational safeguards.
For readers tracking this space, the next signals to watch are concrete: updated findings from CertiK’s ongoing exploit tracking, detailed postmortems from future incidents that document AI-assisted attack workflows, and whether DeFi security spending measurably increases. The emergence of institutional products like CME’s crypto index may also draw more scrutiny to security standards across the sector.
Disclaimer: This article is for informational purposes only and does not constitute financial or investment advice. Cryptocurrency and digital asset markets carry significant risk. Always do your own research before making decisions.
