Researchers Warn Malicious AI Agent Routers Could Become a New Crypto Theft Vector
University of California researchers have identified a new class of infrastructure-level attack capable of draining crypto wallets and injecting malicious code into developer environments – and this crypto theft already happened in the wild.
A systematic study published on arXiv on April 8, 2026, titled “Measuring Malicious Intermediary Attacks on the LLM Supply Chain,” tested 428 AI API routers and found that 9 actively injected malicious code, 17 accessed researcher AWS credentials, and at least one free router successfully drained ETH from a researcher-controlled private key.
The attack surface is the AI agent routing layer – infrastructure that has expanded rapidly as AI agents become embedded in blockchain execution workflows. The question is no longer whether this threat is theoretical. The question is how many compromised routers are already handling live user sessions.