AI agents bring new security risks to crypto
Crypto developers must prioritise security in AI agents to avoid key leaks and unauthorised access.
AI agents are becoming common in crypto, embedded in wallets, trading bots and onchain assistants that automate decisions and tasks. At the core of many AI agents lies the Model Context Protocol (MCP), which controls their behaviour and interactions.
While MCP offers flexibility, it also opens up multiple security risks.
Security researchers at SlowMist have identified four main ways attackers could exploit AI agents via malicious plugins. These include data poisoning, JSON injection, function overrides, and cross-MCP calls, all of which can manipulate or disrupt an agent’s operations.
