AICRIER_2
OPEN FEED
YOU ARE VIEWING ONE ITEM FROM THE AICRIER FEED

X user tricks Grok into $200K transfer

AICrier tracks AI developer news across Product Hunt, GitHub, Hacker News, YouTube, X, arXiv, and more. This page keeps the article you opened front and center while giving you a path into the live feed.

EXPLORE LATEST FEEDSEE FEATURED PICKS

// WHAT AICRIER DOES

7+

TRACKED FEEDS

24/7

SCRAPED FEED

Short summaries, external links, screenshots, relevance scoring, tags, and featured picks for AI builders.

X user tricks Grok into $200K transfer
OPEN LINK ↗
// 45d agoSECURITY INCIDENT

X user tricks Grok into $200K transfer

ANNOUNCEMENTPRODUCTX

An X user reportedly exploited Grok’s connection to Bankrbot by getting the chatbot to translate and pass along a Morse code message, which was treated as an authorized command and triggered a transfer of 3 billion DRB tokens on Base. The attacker quickly sold the tokens, highlighting how indirect prompt injection can turn into a financial control issue when an AI model has wallet-linked automation.

// ANALYSIS

This is a security incident, not a product feature, and the interesting part is the trust boundary failure between a general-purpose chatbot and an execution-capable bot.

  • The attack path appears to be prompt injection through a translation task, then command forwarding into a privileged automation system.
  • The weak point was not just Grok, but Grok’s ability to act as a bridge into Bankrbot permissions.
  • Crypto-connected AI workflows need strict command parsing, human confirmation, and capability scoping before any on-chain action.
  • If the reported sequence is accurate, this is a clean example of how “just relaying text” can still become execution when downstream systems treat model output as trusted input.
// TAGS
grokxaibankrbotsecuritysafetyagenttool-usecryptobase

DISCOVERED

45d ago

2026-05-05

PUBLISHED

45d ago

2026-05-05

RELEVANCE

9/ 10

AUTHOR

ImCalcium