Wall Street’s trillion-dollar dilemma: Why AI-powered hackers are keeping big banks off the blockchain

Finance Share Share this article Copy link X icon X (Twitter) LinkedIn Facebook Email Wall Street’s trillion-dollar dilemma: Why AI-powered hackers are keeping big banks off the blockchain CertiK CEO and co-founder Ronghui Gu says April was the worst month for DeFi in four years with exploits on 27 out of 30 days. By Olivier Acuna | Edited by Jamie Crawley May 30, 2026, 3:00 p.m. 2 min read Make preferred on CertiK's Ronghui Gu said that April has been the worse month in four years in terms of DeFi exploits.(Ronghui Gu for CoinDesk) What to know : Traditional financial institutions are interested in moving trillions of dollars of assets onchain over the next decade but are deterred by pervasive security risks. CertiK CEO Ronghui Gu says near-daily hacks—many accelerated by AI and targeting smart contracts, oracles and cross-chain bridges—are a major barrier to large-scale institutional adoption. Recent exploits, including a $1.46 billion Bybit hack and hundreds of millions drained from Drift Protocol and Kelp Dao, underscore how well-funded attackers outspend constrained defenders and expose systemic vulnerabilities in DeFi. Traditional financial institutions are preparing to move trillions of dollars of assets onchain, but the risk of hacks and exploits is putting them off, according to blockchain security firm CertiK's CEO Ronghui Gu. "Right now, more and more institutions are trying to move assets onchain," Gu told CoinDesk in an interview. "They imagine that, let's say in 10 years, multiple trillion dollars — even tens of trillions of dollars — of assets are going to move onchain." The potentially massive migration of financial assets is hitting a wall because, although bankers and legacy institutions want to capture the efficiency of decentralized ledgers, the current operational reality is still too risky for conservative capital allocators. "When they move assets onchain, they need to face all these AI attacks, smart contract vulnerabilities, oracle manipulation, and cross-chain bridge hacks," Gu explained. "So, that's being considered as one of the major blockers for all this TradFi to move trillions of dollars of assets onchain." Gu said their concerns are legitimate, noting that CertiK detected hacks nearly every day in April, making it the worst month in four years, fueled mostly by AI-driven attacks, notwithstanding "April was the worst month in four years with only three days without a hack," Gu said, adding that CertiK believes this sudden rise could only be possible with AI. Drift Protocol and Kelp Dao were hacked by North Korean cybercriminals in April in two exploits that drained nearly $600 million from the two lending crypto pools. In February 2025, Bybit suffered a $1.46 billion attack , described as the biggest hack of all time. DefiLlama data recently showed more than $1.1 billion had been lost to DeFi hacks in a year, exposing how vulnerabilities in cross-chain infrastructure can quickly spill into the broader ecosystem. Persistent operational failure is the primary symptom of what Gu calls an “unfair game” in favor of malicious actors, because they possess infinite resources. Deep pockets Hackers focus on highly lucrative protocols with massive total value locked (TVL), so they are economically incentivized to pump immense capital into their exploits. A single protocol attacker can easily spend $10,000 to $20,000 worth of computer tokens to keep advanced engines running continuous vulnerability scans against a protocol for days or weeks on end. Conversely, Gu said, protocol defenders operate under strict, localized project budgetary constraints. "We have 5,000 clients," Gu explained. "When we receive a request from a client, there's a budget. We will spend tokens plus human experts within that budget." That creates a massive structural gap: while a defense team is bound by a strict commercial contract to scan a protocol over a few hours, the machines of a hacker or group of hackers never stop hunting for a single crack in the code. Gu said exploits have increased in speed and efficiency with AI and what’s worse is that the nearly-daily trend seen in April could continue through to the end of this year. DeFi Hack More For You When the market is bad, we build: Inside Binance’s bold 2030 master plan By Olivier Acuna | Edited by Jamie Crawley 2 hours ago Established crypto firms will merge with traditional finance, but neither Wall Street bankers nor corporate giants will take over the crypto industry, said Binance’s Head of VIP and Institutional, Catherine Chen. What to know : Binance is doubling down on growth during a crypto downturn, aiming to expand its verified active user base from about 310 million to 3 billion by 2030. The exchange is targeting a more than $2 billion gap between traditional finance and crypto infrastructure spending with a new OMS toolkit and... Read full story Latest Crypto News When the market is bad, we build: Inside Binance’s bold 2030 master plan 2 hours ago Hyperliquid could become a ‘financial services juggernaut’ as DeFi expands, says Grayscale 2 hours ago XRP ETFs add $35 million as bitcoin and ether funds lost $2 billion in late May 3 hours ago Bitcoin, ether, XRP, dogecoin lag a nine-week stocks rally as ETF demand cools 9 hours ago Bitcoin’s biggest quantum risk may not be wallet keys. An early investor fears something bigger 9 hours ago ‘The banks will not accept it’: Dimon escalates battle over stablecoin rewards in CLARITY Act debate 18 hours ago Top Stories U.S. CFTC opens crypto 'perp' door with first approvals at Kalshi, Coinbase May 29, 2026 What American crypto asset perpetuals mean for the future of crypto May 29, 2026 U.S. regulator says 24/7 trading is great for crypto, may not be fit for other sectors 22 hours ago Hyperliquid bigger than NASDAQ, says ICE CEO Jeffrey Sprecher May 29, 2026 Strategy's STRC slips below $99 as Strive captures investor attention May 29, 2026