Foundry is a tool tracked across 5 threat clusters and 7 intelligence report mentions on ThreatCluster. First observed December 3, 2025; most recent activity June 12, 2026.
Foundry is presented as a cybersecurity tool/attack framework associated with autonomous AI agents that can interact with blockchain smart contracts to identify and exploit vulnerabilities. The tool’s significance lies in enabling automated, rapid exploitation of DeFi contracts, potentially draining large sums of money and signaling a shift toward automated cybercrime in the blockchain space. The article underscores the growing risk posed by AI-driven tooling in financial ecosystems.
A third-party Gnosis Safe module named 'SquidRouterModule' was exploited, draining around $3.2 million from 86 Safes in about two hours. The exploit was confirmed by security firms Blockaid and PeckShield, revealing…
A security researcher named Florent discovered an integer-overflow bug in the HongCoin ICO smart contract, which had locked approximately 1,003 ETH (around $2 million) since 2016. The bug prevented refunds to investors…
Microsoft has restricted employee access to Anthropic's Claude Fable 5 AI model due to concerns over data retention policies. While external customers can use the model via GitHub Copilot and Foundry, internal access…
A study by Anthropic reveals that autonomous AI agents can exploit vulnerabilities in blockchain smart contracts, potentially leading to multimillion-dollar thefts. The research utilized a benchmark called SCONE-bench,…
Fireblocks disrupted a North Korea-linked job recruitment scam that targeted crypto firms by using fake interviews and assignments to install malware. The hackers impersonated recruiters and conducted interviews via…