Unverified DeFi Contracts Linked to $36.7M in Losses, Chainalysis Says

Chainalysis has identified a growing attack pattern in decentralized finance, saying hackers stole $36.7 million across four exploits involving unverified DeFi contracts since January.

The finding matters because DeFi users and projects often rely on smart contracts to handle funds automatically. When contracts are unverified, it can be harder for users, auditors, and market participants to inspect the code and assess potential risks before interacting with a protocol.

According to the source material, the losses were tied to four separate exploits, suggesting attackers are repeatedly targeting a similar weakness rather than a single isolated incident. Chainalysis described the pattern as involving AI-powered attackers, though the supplied details do not specify the tools or methods used in each case.

The report adds to wider concerns around smart contract transparency and security in DeFi. For projects, the issue underscores the importance of making contract code reviewable and maintaining security practices that help users evaluate risk.

For readers, the key takeaway is straightforward: unverified contracts can create opacity in a market where code directly controls assets. Chainalysis’ figure puts the reported losses from this attack pattern at $36.7 million since January, based on the incidents cited in the source.