Charles Guillemet, Chief Technology Officer at hardware wallet provider Ledger, has issued a stark warning that artificial intelligence is dramatically worsening the security landscape for cryptocurrency platforms and investors. In an interview with CoinDesk, Guillemet stated that the fundamental economics of cybersecurity are breaking down as AI tools make it faster and cheaper to find and exploit vulnerabilities. "Finding vulnerabilities and exploiting them becomes really, really easy," Guillemet said. "The cost is going down to zero."
The warning comes amid a resurgence of high-profile crypto heists. Just this week, the Solana-based decentralized finance protocol Drift was exploited for approximately $285 million in digital assets, marking one of the most severe attacks of the year so far. A week prior, an attack on the yield protocol Resolv resulted in $25 million in losses. According to data from DefiLlama, over $1.4 billion in assets were stolen or lost in crypto attacks over the past year.
Guillemet explained that security has traditionally relied on an asymmetry: it should be harder and more expensive to hack a system than the potential reward. AI is eroding this advantage, allowing tasks like reverse engineering software or chaining exploits—which once took skilled researchers months—to be completed in seconds with the right prompts. For crypto, where code often controls large pools of funds, this shift raises the stakes exponentially. "You need to be perfect," Guillemet warned teams developing blockchain protocols.
The problem is further compounded by the rise of AI-generated code. As more developers rely on AI assistants, vulnerabilities could be introduced and spread at an unprecedented rate. "There is no 'make it secure' button," Guillemet cautioned. "We are going to produce a lot of code that will be insecure by design."
In response, Guillemet advocates for a fundamental rethinking of security. He pointed to formal verification—using mathematical proofs to validate code—as a stronger approach than traditional audits, which can miss critical bugs. He also emphasized the importance of hardware-based security, such as hardware wallets that isolate private keys from internet-connected systems. "When you have a dedicated device not exposed to the internet, it is more secure by design," he stated.
This layered defense is becoming crucial as malware grows more sophisticated. Guillemet described attacks that scan compromised phones for wallet seed phrases, enabling hackers to drain funds without any user interaction. His blunt message for average crypto users is to assume systems can and will fail. "You can’t trust most of the systems that you use," he said, suggesting this reality will push more users toward cold storage, stronger operational security, and keeping sensitive data entirely offline.
Looking ahead, Guillemet anticipates a growing divide. Critical systems like core wallets and major protocols will likely invest heavily in advanced security and adapt. However, much of the broader software ecosystem may struggle to keep pace with the AI-powered threat landscape. "It’s really easier to hack everything," he concluded.
