Crypto Hackers Use LLMs to Scan EVM Contracts for Vulnerabilities

Share:
Crypto attackers are using LLMs to scan old EVM smart contracts and find long-active token approvals that expose DeFi users and protocols to exploits. A six-year-old Ethereum contract (Noda) had a flaw that accepted any valid fee-address signature, allowing unauthorized trades and highlighting risks in stale smart contract logic and approvals. Recommendation: audit and revoke unused token permissions to reduce DeFi/security risk from token approvals and smart contract exploits.
- Crypto hackers use LLMs to scan old EVM contracts for flaws in long-active approvals.
- Noda contract flaw lets any fee address signature trigger unauthorized trades.
- Review and revoke unused token permissions to reduce DeFi security risks.
Crypto Hackers are using large language models (LLMs) to target old EVM smart contracts for unguarded bugs. The activity is drawing attention to contracts deployed years ago that still hold active token approvals from users. In many cases, those approvals were never revoked after the original DeFi interaction.
One recent case involved a six-year-old Ethereum contract called Noda. The contract allows a fee address to execute privileged trades if a valid signature from that address is provided. The flaw was simple. The code accepted any valid signature instead of checking whether it was tied to a specific action. An attacker could t…
Read The Full Article Crypto Hackers Use LLMs to Scan EVM Contracts for Vulnerabilities On Coin Edition.
Read More



