Close Menu
  • Latest News
    • Bitcoin
    • Ethereum
    • Altcoins
    • Meme Coins
  • Tech
    • Blockchain
    • Security and Privacy
  • Web 3
    • Gaming
  • Legal
    • Legal and Regulatory
    • Adoption
  • Analysis
  • Learn
    • Education
    • Wallets and Exchanges
  • Tools
    • Market Overview
    • Exchange Tool
What's Hot

Michael Saylor’s Strategy Increases Cash Reserve by $450,000,000, Goes Third Consecutive Week Without Buying Any Bitcoin

July 14, 2026

VELVET crypto rallies 29% – Can 2,500 new holders sustain the rally?

July 14, 2026

Trump Pushes Senators To Pass Clarity Act in Wake of Lindsey Graham’s Death As Crypto Bill’s Polymarket Odds Dwindle

July 14, 2026
Facebook X (Twitter) Instagram
  • Contact
  • Privacy Policy
  • Terms & Conditions
  • Disclosure
Facebook X (Twitter) Instagram
Free.cc (Free Cryptocurrency)Free.cc (Free Cryptocurrency)
  • Latest News
    1. Bitcoin
    2. Ethereum
    3. Altcoins
    4. Meme Coins
    5. View All

    Michael Saylor’s Strategy Increases Cash Reserve by $450,000,000, Goes Third Consecutive Week Without Buying Any Bitcoin

    July 14, 2026

    Binance.US CEO says exchange is rebuilding, eyes return to 20% U.S. market share

    July 14, 2026

    Bitwise Sees A Bottom In Bitcoin’s Worst Vibes Yet: ‘Darkest Before The Dawn’

    July 14, 2026

    Bitcoin OG whale awakens after 7 years, moves $188M BTC: Is a sell-off coming?

    July 14, 2026

    Ethereum Bullish Signals Strengthen as Whale Accumulation, Lean Ethereum Roadmap Fuel Optimism

    July 13, 2026

    Which way is Ethereum headed? What to expect as bulls and bears fight for ETH

    July 13, 2026

    Ethereum Foundation Deploys AI Agents to Hunt Bugs in Protocol Code

    July 13, 2026

    Is Ethereum Price Entering an Accumulation Phase? Key Technical Signals to Watch

    July 13, 2026

    VELVET crypto rallies 29% – Can 2,500 new holders sustain the rally?

    July 14, 2026

    Circle Secures OCC Approval for National Trust Bank to Custody USDC and Digital Assets

    July 14, 2026

    Here’s why Zcash’s Orchard flaw puts pre-disclosure trading under the spotlight

    July 13, 2026

    Aave V3 On zkSync Era Gives DeFi Lending Another Push Into ZK Rollups

    July 13, 2026

    CASHCAT Soars 1,600% Amid Robinhood Memecoin Frenzy

    July 8, 2026

    Crypto Market Sectors Retreat as Meme Tokens Lead Daily Declines

    July 7, 2026

    Why Memecoins May Never Return to Their All-Time Highs

    July 4, 2026

    How Solana Meme Coin ANSEM Exploded 600x in One Day

    June 29, 2026

    Michael Saylor’s Strategy Increases Cash Reserve by $450,000,000, Goes Third Consecutive Week Without Buying Any Bitcoin

    July 14, 2026

    VELVET crypto rallies 29% – Can 2,500 new holders sustain the rally?

    July 14, 2026

    Trump Pushes Senators To Pass Clarity Act in Wake of Lindsey Graham’s Death As Crypto Bill’s Polymarket Odds Dwindle

    July 14, 2026

    Binance.US CEO says exchange is rebuilding, eyes return to 20% U.S. market share

    July 14, 2026
  • Tech
    1. Blockchain
    2. Security and Privacy
    3. View All

    Merck and Hashgraph Group launch Hedera-based product passport for EU compliance

    June 12, 2026

    COTI and Midnight Foundation Partner to Advance the Global Privacy Ecosystem

    June 11, 2026

    Cardano Gets Exposure From Olympics Committee

    June 11, 2026

    How Privacy and Composability Trade-Offs Differ

    June 11, 2026

    Robinhood Chain tokens are reportedly vanishing from wallets causing buyers to lose funds

    July 14, 2026

    One crypto wallet tied to a 20-year-old fraudster processed over $122M before Interpol closed in

    July 13, 2026

    Convicted scammer’s “seized” crypto moves to unknown wallets while in prison as DOJ failed to secure funds

    July 13, 2026

    Relay Protocol Warns of Robinhood Chain Honeypot Coins

    July 10, 2026

    Michael Saylor’s Strategy Increases Cash Reserve by $450,000,000, Goes Third Consecutive Week Without Buying Any Bitcoin

    July 14, 2026

    VELVET crypto rallies 29% – Can 2,500 new holders sustain the rally?

    July 14, 2026

    Trump Pushes Senators To Pass Clarity Act in Wake of Lindsey Graham’s Death As Crypto Bill’s Polymarket Odds Dwindle

    July 14, 2026

    Binance.US CEO says exchange is rebuilding, eyes return to 20% U.S. market share

    July 14, 2026
  • Web 3
    1. Gaming
    2. View All

    Yield Guild Games Sunsets YGG Play Publishing Unit, Cuts 35 Jobs

    July 7, 2026

    GO1 and Xiaohai Set up Potential Rematch at EWC 2026 Fatal Fury Bracket in Paris

    July 6, 2026

    CoinIQ Crypto Analysis: The Anti-FOMO Crypto App That Grades Coins Before You Buy

    July 3, 2026

    Hur Blockchain och NFT-teknologi Förändrar Kasinobranschen för Alltid

    June 29, 2026

    Michael Saylor’s Strategy Increases Cash Reserve by $450,000,000, Goes Third Consecutive Week Without Buying Any Bitcoin

    July 14, 2026

    VELVET crypto rallies 29% – Can 2,500 new holders sustain the rally?

    July 14, 2026

    Trump Pushes Senators To Pass Clarity Act in Wake of Lindsey Graham’s Death As Crypto Bill’s Polymarket Odds Dwindle

    July 14, 2026

    Binance.US CEO says exchange is rebuilding, eyes return to 20% U.S. market share

    July 14, 2026
  • Legal
    1. Legal and Regulatory
    2. Adoption
    3. View All

    Trump Pushes Senators To Pass Clarity Act in Wake of Lindsey Graham’s Death As Crypto Bill’s Polymarket Odds Dwindle

    July 14, 2026

    After MiCA deadline, majority of Binance users sent funds to self-custody not other compliant exchanges

    July 13, 2026

    Ripple CEO says SEC suit nearly pushed company to shut down

    July 13, 2026

    Crypto won the ETF fight but now the SEC is questioning if things have gone too far

    July 12, 2026

    Crypto exchanges are becoming the new distribution channel for Wall Street assets

    July 14, 2026

    Tether’s $20 billion mountain of gold – equal to a national reserve

    July 13, 2026

    A $407 million Treasury fund reveals how Wall Street is building crypto’s missing collateral layer

    July 12, 2026

    Trump’s crypto disclosure exposes an institutional problem that markets price in real time

    July 12, 2026

    Michael Saylor’s Strategy Increases Cash Reserve by $450,000,000, Goes Third Consecutive Week Without Buying Any Bitcoin

    July 14, 2026

    VELVET crypto rallies 29% – Can 2,500 new holders sustain the rally?

    July 14, 2026

    Trump Pushes Senators To Pass Clarity Act in Wake of Lindsey Graham’s Death As Crypto Bill’s Polymarket Odds Dwindle

    July 14, 2026

    Binance.US CEO says exchange is rebuilding, eyes return to 20% U.S. market share

    July 14, 2026
  • Analysis

    Internet Computer (ICP) and Chainlink (LINK) Top AI Development Rankings—Could They Lead the Next Crypto Rally?

    July 14, 2026

    ALLO Price Jumps 40% While BILL Surges 45% as AI Crypto Narrative Accelerates

    July 14, 2026

    Decred Price Eyes $23 as Growing On-Chain Activity Meets Key Technical Barrier

    July 13, 2026

    CRCL Stock Could Revisit Its 52-Week Low: Here’s Why

    July 13, 2026

    Bitcoin falls below $63,000 as markets give Hormuz traffic just 3% chance to normalize by August

    July 13, 2026
  • Learn
    1. Education
    2. Wallets and Exchanges
    3. View All

    What Is Robinhood Chain? The Ethereum Layer-2 Network for Tokenized Stocks

    July 12, 2026

    What Is BChat? The Decentralized Messaging App Built for Privacy

    June 2, 2026

    What Is an AI Prompt Injection Attack? The Hidden Threat Hijacking Your Chatbots

    May 31, 2026

    What Is AI Jailbreaking? A Beginner’s Guide to the Cat-and-Mouse Game Behind Every Chatbot

    May 17, 2026

    Hong Kong gives crypto platforms one year to ditch one-time passwords or cover user losses

    July 11, 2026

    Coinbase World Cup error shows prediction markets still have a proof problem

    July 7, 2026

    Coinbase helped build USDC – Why is it now backing the stablecoin trying to replace it, Open USD?

    July 3, 2026

    Robinhood’s expanding crypto bet meets a faster-moving prediction market boom

    July 2, 2026

    Michael Saylor’s Strategy Increases Cash Reserve by $450,000,000, Goes Third Consecutive Week Without Buying Any Bitcoin

    July 14, 2026

    VELVET crypto rallies 29% – Can 2,500 new holders sustain the rally?

    July 14, 2026

    Trump Pushes Senators To Pass Clarity Act in Wake of Lindsey Graham’s Death As Crypto Bill’s Polymarket Odds Dwindle

    July 14, 2026

    Binance.US CEO says exchange is rebuilding, eyes return to 20% U.S. market share

    July 14, 2026
  • Tools
    • Market Overview
    • Exchange Tool
Free.cc (Free Cryptocurrency)Free.cc (Free Cryptocurrency)
Home»Analysis»How one trader used morse code to trick Grok into sending them billions of crypto tokens from its verified wallet
Analysis

How one trader used morse code to trick Grok into sending them billions of crypto tokens from its verified wallet

May 4, 2026No Comments8 Mins Read
Share
Facebook Twitter LinkedIn Pinterest Email
Make CryptoSlate preferred on

Tagging @grok in an X post plus a few dots and dashes was all that was needed last night for a bad actor to pickpocket a verified crypto wallet without ever touching the private keys.

Agentic token launchpad, Bankrbot reported on May 4 that it had sent 3 billion DRB on Base to the recipient 0xe8e47...a686b.

The funds came from a wallet assigned to X’s AI, Grok, and were sent to an unauthorized wallet owned by a bad actor. This Base transaction shows the on-chain transfer path behind the post.

CryptoSlate’s review of X posts around the incident points to a reported command path that began with Morse-code obfuscation. Grok decoded the text into a clean public instruction tagging @bankrbot and asking it to send the tokens, while Bankrbot handled the command as executable.

The exposed layer was the handoff from language to authority. A model that decodes a puzzle, writes a helpful reply, or reformats a user’s text can become part of a payment rail when another agent treats that output as valid.

For crypto investors, this transfer should turn AI-agent risk from an abstract security debate into a wallet-control problem. A public command can become spend authority when one system treats model output as an instruction and another system has permission to move tokens.

Wallet permissions, parser, social trigger, and execution policy become layers of attack vectors.

The crypto winners from AI are not AI coins as agents start spending autonomously
Related Reading

The crypto winners from AI are not AI coins as agents start spending autonomously

The rise of AI agents is creating a simple question with huge implications for crypto: how does software pay?

Mar 28, 2026 · Andjela Radmilac

Posts and transaction context reviewed by CryptoSlate put the DRB transfer at roughly $155,000 to $200,000 at the time, with DebtReliefBot price data providing market context for the token.

Reports reviewed by CryptoSlate also say most funds are being returned, and some DRB is reportedly retained as an informal bug bounty. That outcome reduced the loss, but it also showed how much the recovery depended on post-transaction coordination rather than pre-transaction limits.

Bankr developer 0xDeployer said 80% of the funds had been returned, while the remaining 20% would be discussed with the DRB community. That confirmed the partial recovery while leaving the final treatment of the retained funds unresolved.

0xDeployer also said Bankr automatically provisions an X wallet for every account that interacts with the platform, including Grok. According to the post, that wallet is controlled by whoever controls the X account rather than by Bankr or xAI staff.

See also  Why Is KITE Price Rising So Fast Today? Can It Break $0.26 Break?

How public text became spend authority

The reported path had four steps. First, the attacker identified a Bankr Club Membership NFT in a Grok-associated wallet before the incident.

CryptoSlate’s review indicates that it expanded the wallet’s transfer privileges inside the Bankr environment. The Bankr access page describes membership and access mechanics today, placing the NFT claim in the broader permission layer rather than making it the whole explanation.

Second, the attacker posted a message on X containing Morse code, with additional noisy formatting. Posts around the incident described a Morse-code prompt injection, while the now-deleted prompt was unavailable for us to review directly.

The reported vector was Morse code with possible array or concatenation tricks mixed in.

Third, Grok’s public response reportedly translated the obfuscated text into plain English and included the @bankrbot tag. In that account, Grok functioned as a helpful decoder.

The risk appeared after the text left Grok and entered a bot interface that watched public output for formatted commands.

Fourth, Bankrbot treated the public command as executable and broadcast a token transfer. Bankr and Base describe an agent wallet surface that can use wallet functionality for transfers, swaps, gas sponsorship, and token launches, while natural-language token sends fit directly into that product surface.

Bankr’s broader onchain AI assistant documentation shows why the boundary between chat instructions and transaction authority needs explicit policy.

Step Surface Observed action Control that would have changed the outcome
Privilege setup Wallet or membership layer Access was reportedly expanded before the prompt appeared Separate privilege review for new wallet capabilities
Obfuscation X post Morse code put a payment instruction inside obfuscated text Decode-and-classify checks before replies are published
Public output Grok reply The clean command was exposed with a bot tag Output sanitization for tool-like command strings
Execution Bankrbot The bot acted on a public command and moved tokens Recipient allowlists, spend limits, and human confirmation

Bankr morse code wallet exploit

Why wallet agents change the risk

Prompt injection has often been treated as a model-behavior problem. The financial version is more concrete.

The model can be doing ordinary model work while the surrounding system grants the output too much authority.

The trouble with generative AI ‘Agents’
Related Reading

The trouble with generative AI ‘Agents’

Generative AI’s pursuit of power creates systemic risks in crypto integration.

Apr 20, 2025 · John deVadoss

Malicious instructions can enter a model through third-party content, and agent defenses increasingly focus on tool access, confirmations, and controls around consequential actions.

See also  BTC Could Push Higher or Slide Toward $74,000

The excessive-agency category captures the same operational risk: broad permissions, sensitive functions, and autonomous action raise the blast radius. The broader LLM application risk list also treats prompt injection and insecure output handling as app-layer problems.

Crypto makes that blast radius harder to absorb. A customer-service agent who sends a bad email creates a review problem. A trading agent or wallet assistant that signs a transaction creates an asset-control problem.

The difference is finality. Once a wallet signs and broadcasts a transfer, the recovery path depends on counterparties, public pressure, or law enforcement.

The Bankr incident is strongest as a control failure. Bankr’s access-control docs describe read-only mode, write-operation flags, IP allowlists, and recipient allowlists.

Those are the kinds of gates that sit outside the model and can reduce damage even when the model parses malicious content in an unexpected way.

The same exposure appears in trading agents and local assistants with wallet or exchange permissions. A trading bot with API keys can be manipulated into bad orders if it accepts market commentary, social posts, emails, or web pages as instructions.

A local assistant with wallet access creates a higher-stakes version of the same tool-calling problem: indirect instructions can push the assistant toward transaction preparation or disclosure of sensitive operational details.

CryptoSlate Daily Brief

Daily signals, zero noise.

Market-moving headlines and context delivered every morning in one tight read.

5-minute digest 100k+ readers

Free. No spam. Unsubscribe any time.

Whoops, looks like there was a problem. Please try again.

You’re subscribed. Welcome aboard.

Security research has already modeled this class of failure. Indirect prompt injection depicts malicious content that manipulates agents through data they process, while tool-calling agent research evaluates attacks and defenses for agents operating with external tools.

NIST’s adversarial machine-learning taxonomy supplies the broader language for thinking about those attacks and mitigations.

What crypto users should require

For crypto investors, permission design is the core requirement. A wallet-connected agent should start from the assumption that web pages, X posts, DMs, emails, and encoded text may contain hostile instructions.

That assumption turns agent safety into a transaction-policy problem.

First, trading agents should have separate read and write modes. Read mode can summarize markets, compare tokens, and propose actions.

Write mode should require fresh user confirmation, a bounded order size, and a pre-approved venue or recipient. A command that appears in public text should never inherit wallet authority just because it matches a natural-language format.

See also  Bitcoin volatility spikes as FOMC confirms 25 basis-point rate cut for September

Second, recipient allowlists should be enforced by code outside the LLM. The model can suggest a transfer.

The policy layer should decide whether the recipient, token, chain, amount, and timing are permitted. If any field falls outside policy, execution should stop or move to human review.

Third, spend limits should be session-based and reset aggressively. A daily or per-action ceiling could have reduced or blocked the DRB transfer, depending on the policy.

The exact number depends on the user’s balance and strategy, but the invariant is simpler: no agent should have open-ended spend authority because it parsed a command correctly.

Fourth, local key isolation should be treated as a hard boundary. Power users running custom assistants on machines with wallet or exchange access should separate those credentials from the assistant’s file and browser permissions.

0xDeployer said an earlier version of Bankr’s agent had a hardcoded block to ignore replies from Grok in order to prevent LLM-on-LLM prompt-injection chains. That protection was not carried into the latest agent rewrite, creating the gap that allowed the public Grok reply to become an executable Bankr instruction.

Deployer said Bankr has since added a stronger block on Grok’s account and pointed agent-wallet operators to controls already available to account owners, including IP whitelisting on API keys, permissioned API keys, and a per-account toggle that disables Bankr execution from X replies.

The assistant can prepare a transaction draft. A different wallet surface should approve it.

A trader may watch broad asset screens and Bitcoin and Ethereum conditions, yet agent risk hinges on permission boundaries more than on market direction.

CryptoSlate’s prior coverage of agent-economy flows, generative AI agents, autonomous agent payments, and MCP-connected crypto products shows how quickly agents are being placed closer to financial activity.

Staggering $28 trillion flows through crypto’s ‘agent economy’ – but 76% of it is just bots shuffling stablecoins
Related Reading

Staggering $28 trillion flows through crypto’s ‘agent economy’ – but 76% of it is just bots shuffling stablecoins

A rising share of on-chain payments is machine-led, but DWF, BCG, and others show the so‑called agent economy still depends on centralized gateways.

Apr 17, 2026 · Gino Matos

The security lesson comes from the authorization path. Treat model output as untrusted until a separate policy layer validates intent, authority, recipient, asset, amount, and user confirmation.

Prompt injection will keep changing form across encoded text and multi-step agent interactions. The defense has to live where the transaction is authorized, before the wallet signs.

Billions Code Crypto Grok morse sending Tokens Trader trick Verified wallet
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

VELVET crypto rallies 29% – Can 2,500 new holders sustain the rally?

July 14, 2026

Trump Pushes Senators To Pass Clarity Act in Wake of Lindsey Graham’s Death As Crypto Bill’s Polymarket Odds Dwindle

July 14, 2026

Crypto exchanges are becoming the new distribution channel for Wall Street assets

July 14, 2026

Internet Computer (ICP) and Chainlink (LINK) Top AI Development Rankings—Could They Lead the Next Crypto Rally?

July 14, 2026
Add A Comment
Leave A Reply Cancel Reply

Top Posts

Mantle Price Rockets to ATH, Can it Hit $3.15?

October 9, 2025

Is SUI Price Entering a New Macro Wave? ETF Flows Add Fuel

February 20, 2026

Stay ahead with the latest crypto news, market updates, blockchain insights, and trends. Your trusted source for everything happening in the digital asset world.


We're social. Connect with us:

Facebook X (Twitter) Instagram Pinterest YouTube
Top Insights

Michael Saylor’s Strategy Increases Cash Reserve by $450,000,000, Goes Third Consecutive Week Without Buying Any Bitcoin

July 14, 2026

VELVET crypto rallies 29% – Can 2,500 new holders sustain the rally?

July 14, 2026

Trump Pushes Senators To Pass Clarity Act in Wake of Lindsey Graham’s Death As Crypto Bill’s Polymarket Odds Dwindle

July 14, 2026
Get Informed

Subscribe to Updates

Get the latest creative news From Free.cc directly in your Inbox!

  • Contact
  • Privacy Policy
  • Terms & Conditions
  • Disclosure
© 2026 free.cc - All rights reserved.

Type above and press Enter to search. Press Esc to cancel.