Crypto AI Platform Bankr Locks Down System After Hacker Breaches 14 Crypto Wallets

bitcoinistОпубліковано о 2026-05-20Востаннє оновлено о 2026-05-20

Анотація

Crypto AI trading platform Bankr has locked down its system after a hacker breached 14 user wallets. The attack, which targeted wallets automatically created via interactions with Bankr's AI bot on X, appears to be a social engineering scheme exploiting the platform's connection with Grok. Security experts suspect the use of "prompt injection" to manipulate the AI into approving unauthorized transactions. Losses from individual wallets reached as high as $150,000, with a total of $440,000 identified in three attacker-controlled addresses. Tech entrepreneur Austen Allred was among the victims. Bankr has halted all transactions, pledged full reimbursement for lost funds, and advised affected users to set up new wallets and transfer any remaining assets. This incident follows a series of major crypto exploits in recent months.

Tech entrepreneur Austen Allred was among the victims. His wallet, tied to a project called Kelly Claude AI assistant, was drained of Ether — though the hacker left his memecoin holdings untouched. Allred said there was no sign anyone else had logged into his Bankr account, suggesting the attacker got to the private keys through other means.

How The Attack Unfolded

Bankr is a crypto trading tool that lets users send plain-language instructions — like “swap this token” or “transfer funds” — to an AI that carries out the trades.

The platform also creates a crypto wallet automatically for every X account that interacts with its bot.

That feature had already drawn attention earlier this year, when someone reportedly tricked Grok into telling Bankr to launch a token, then pulled funds from it into a wallet they controlled.

Tuesday’s incident appears to follow a similar pattern. Yu Xian, founder of blockchain security firm SlowMist, said the breach was likely a social engineering scheme aimed at the AI agent.

ETHUSD now trading at $2,129. Chart: TradingView

According to Xian, the attacker exploited the trust connection between Grok and Bankrbot to push through unauthorized transaction approvals.

He identified three wallet addresses linked to the attacker that together held $440,000 in crypto.

Xian also pointed to prompt injection as part of the method — a technique where malicious instructions are fed to an AI to manipulate its behavior.

Bankr Pledges Full Reimbursement

Bankr confirmed the breach in a post on X, saying it had identified an attacker who accessed 14 wallets. The platform said it shut down all transaction activity — swaps, transfers, and token deployments — while the investigation continues. It also pledged to cover all losses.

Users were warned not to sign any transactions for now. For those with wallets already hit, Bankr told them to stop using the affected accounts entirely, set up a new wallet with a fresh seed phrase on a clean device, and transfer any remaining tokens or NFTs out immediately.

If assets can’t be moved, revoking existing approvals was advised. Bankr also flagged the possibility of malware, urging users to check their computers and phones for suspicious software or browser extensions.

What Users Lost

Some users reported losing as much as $150,000 from a single wallet. The exact total across all 14 breached wallets has not been confirmed.

The attack adds to a rough stretch for the crypto space. Bad actors stole more than $168 million in the first quarter of the year.

April brought two of the biggest hits so far — a $280 million exploit of Drift Protocol and a $292 million breach of Kelp.

Just a day before the Bankr incident, the Ethereum bridge of Verus Protocol was also reportedly hit.

Featured image from Unsplash, chart from TradingView

Пов'язані питання

QWhat is Bankr and how does it function as described in the article?

ABankr is a crypto trading tool that allows users to send plain-language instructions, like 'swap this token' or 'transfer funds', to an AI which then carries out the trades. The platform also automatically creates a crypto wallet for every X (formerly Twitter) account that interacts with its bot.

QAccording to the article, what was the likely method used by the attacker to breach the Bankr wallets?

AAccording to Yu Xian, founder of SlowMist, the breach was likely a social engineering scheme aimed at the AI agent. The attacker exploited the trust connection between Grok and Bankrbot to push through unauthorized transaction approvals, and prompt injection—feeding malicious instructions to manipulate the AI's behavior—was part of the method.

QWhat actions did Bankr take in response to the security breach?

ABankr confirmed the breach, identified that an attacker accessed 14 wallets, and temporarily shut down all transaction activity including swaps, transfers, and token deployments while investigating. They pledged to reimburse all lost funds and warned users not to sign any transactions.

QWhat advice did Bankr give to users whose wallets were affected by the hack?

ABankr advised affected users to stop using the compromised accounts entirely, set up a new wallet with a fresh seed phrase on a clean device, and immediately transfer any remaining tokens or NFTs out. If assets couldn't be moved, they advised revoking existing approvals and checking devices for malware or suspicious software/extensions.

QBesides the Bankr incident, what other major crypto exploits were mentioned as part of a 'rough stretch' for the crypto space?

AThe article mentions that bad actors stole over $168 million in Q1 of the year. In April, there were two major exploits: a $280 million exploit of Drift Protocol and a $292 million breach of Kelp. Just a day before the Bankr incident, the Ethereum bridge of Verus Protocol was also reportedly hit.

Пов'язані матеріали

Nearly a Hundred Players Rush into Embodied Data: With 4.47 Billion Yuan in Financing in One Year, Who Can Really Make Money by 'Selling Data'?

The domestic embodied AI data industry has attracted nearly 100 players, with 70 focused on data collection and 27 on data infrastructure. In the past year, 15 independent embodied data service providers raised approximately 4.47 billion yuan. Despite this growth, the sector remains early-stage, fragmented, and faces significant challenges. Data collection methods are diverse, categorized into four main routes: teleoperation of real robots, human demonstration without a robot (using motion capture, exoskeletons, etc.), simulation synthesis, and distillation from internet videos. Most companies (43%) adopt hybrid approaches, combining multiple routes, as no single method can meet all training needs. Teleoperation alone is pursued by 31% of players, often by state-owned platforms and robot companies, while newer firms favor asset-light, no-hardware human demonstration. Independent data service providers now form the largest player group (40%), indicating the emergence of a distinct industry segment rather than just a subsidiary function for robot makers. Two-thirds of all players are "embodied-native" startups, while one-third are companies that pivoted from fields like AI data annotation, which are more prevalent in the data infrastructure layer. Current annual industry capacity is estimated at 1.6-1.8 million hours plus 70-80 million data points, with a short-term goal to increase this 15-20 fold within 1-3 years. Data collection factories are spread across 20 provinces in China, concentrated in the Yangtze River Delta, Beijing-Tianjin-Hebei, and Pearl River Delta regions. Financially, the 4.47 billion yuan raised in the past year pales compared to the 43.8 billion yuan raised by the broader embodied intelligence sector in just the first half of 2026, highlighting that data remains a less "sexy" bet for investors. The 15 funded independent providers show clear stratification: a top tier led by a unicorn (Lightwheel Intelligence, 3.1 billion yuan), a middle tier of 11 firms raising tens to hundreds of millions, and an early-stage tier of 3 companies. Sixty-nine investment institutions have participated, but none have made concentrated bets, reflecting uncertainty about viable business models. Over half of these funded companies are less than a year old, most are at pre-A or A rounds, and profitability remains largely unproven. In summary, the embodied data industry has become an independent track creating jobs and local economic activity. However, it is still nascent, with unformed consensus, unsolved problems, and unproven business models. The coming 1-2 years will be a critical validation window to see if companies can build sustainable, profitable businesses purely by "selling data."

marsbit2 год тому

Nearly a Hundred Players Rush into Embodied Data: With 4.47 Billion Yuan in Financing in One Year, Who Can Really Make Money by 'Selling Data'?

marsbit2 год тому

Dialogue with Multicoin Partner: The Crypto Market Has Bottomed Out, Favoring Three Cryptocurrencies in This Cycle

In a recent interview, Multicoin Capital managing partner Tushar Jain shared his views on the crypto market. He believes the market has bottomed and is at an inflection point, citing that negative news no longer causes significant price declines and application adoption continues to grow. Jain remains highly bullish on Solana, viewing it as the correct architectural choice for internet capital markets, particularly for spot and tokenized security trading. He is also positive on Hyperliquid, noting its leadership in decentralized derivatives trading. His investment approach focuses on concentrating capital in top convictions rather than equal allocation. A distinct opportunity he highlights is Zcash (ZEC), which he sees as a return to the industry's cypherpunk ethos and a potential top-five asset by market cap. For assets like Zcash without cash flows, his valuation framework is based on relative market cap ranking. Regarding investment strategy, Jain employs a "three-part" entry method to avoid timing pitfalls and emphasizes long-term "active management" over "active trading." He outlines four sources of investment edge: informational, analytical, behavioral/psychological, and structural. On portfolio management, the fund uses Bitcoin as its "cash," selling assets into Bitcoin during market euphoria to reduce beta risk and using Bitcoin to buy dips. Sales occur only if a better opportunity arises, the investment thesis breaks, or valuations become excessively overheated. While respectful of Ethereum's resilience, he questions its unclear scaling roadmap. Finally, Jain reaffirms his commitment to the thesis that blockchains will form the foundational architecture for future capital markets.

marsbit3 год тому

Dialogue with Multicoin Partner: The Crypto Market Has Bottomed Out, Favoring Three Cryptocurrencies in This Cycle

marsbit3 год тому

Торгівля

Спот
活动图片