Your Crypto Could Vanish: SlowMist Reveals Critical Flaw in AI Coding Tools

Your Crypto Could Vanish: SlowMist Reveals Critical Flaw... Blockchain security firm SlowMist issued urgent warnings about AI coding assistant vulnerabilities that trigger automatic malware execution during routine operations like "Open Folder," with Cursor users facing severe exposure to attacks embedding malicious instructions in markdown files invisible t... Blockchain security firm SlowMist has issued an urgent warning about a critical vulnerability in AI-powered coding tools that could compromise developer systems instantly through simple project operations.The flaw affects mainstream integrated development environments (IDEs) and poses particular risks to crypto developers whose systems often store valuable digital assets and sensitive credentials.Users of AI coding assistants face immediate danger when opening untrusted project directories, with several developers already compromised according to SlowMist's threat intelligence team.The vulnerability triggers automatically when developers perform routine actions, like "Open Folder," on malicious projects, executing system commands on both Windows and macOS without requiring additional user interaction. SlowMist TI AlertIf youâEUR(TM)re doing Vibe Coding or using mainstream IDEs, be cautious when opening any project or workspace. For example, simply using âEUR?"Open FolderâEUR on a project may trigger system command execution âEUR" on both Windows and macOS. Cursor users: especially atâEUR¦ pic.twitter.com/9pNgqKoZKm- SlowMist (@SlowMist_Team) January 8, 2026 AI Coding Tools Become Attack Vector for Crypto TheftCursor users face particularly severe exposure to the vulnerability, which cybersecurity firm HiddenLayer first documented in September in its research into the "CopyPasta License Attack."The exploit manipulates how AI assistants interpret common developer files, including LICENSE.txt and README.md, by embedding harmful instructions in markdown comments that remain hidden from rendered views but guide AI tools to propagate malware across entire codebases.Attackers can stage backdoors, exfiltrate sensitive data, or manipulate critical systems while malicious code remains buried deep inside files, according to HiddenLayer's analysis.The firm demonstrated the attack using Cursor alongside other vulnerable tools, including Windsurf, Kiro, and Aider, showing how minimal user interaction enables organization-wide code compromise.The disclosure follows Coinbase CEO Brian Armstrong's aggressive push to have AI-generated code account for 40% of the company's output, with plans to reach 50% by October, despite firing engineers who failed to adopt AI tools within one week of his mandate. Coinbase CEO @brian_armstrong fired engineers who failed to adopt AI coding tools within a week of his mandate as the crypto exchange targets 50% AI-generated code.#AI #Codinghttps://t.co/ubNvyhiFlL- Cryptonews.com (@cryptonews) September 4, 2025 Security experts and developers criticized the policy as a "giant red flag for any security-sensitive business," according to Dango founder Larry Lyu, while Carnegie Mellon professor Jonathan Aldrich called it "insane" and said he would not trust Coinbase with his funds.Nation-State Hackers Weaponize Blockchain for Malware DistributionDevelopers continue to face persistent organized attacks. North Korean threat actors have escalated attacks by embedding malware directly into blockchain smart contracts, marking the first documented nation-state use of "EtherHiding" techniques.Famous Chollima operatives deployed malicious JavaScript modules that combined the BeaverTail and OtterCookie malware through fake job interviews targeting crypto developers, distributing the code via an NPM package disguised as a chess application.Google documented a North Korean group, UNC5342, embedding JADESNOW malware and INVISIBLEFERRET backdoors within smart contracts on the BNB Smart Chain and Ethereum since February, creating a decentralized command-and-control infrastructure that law enforcement cannot easily dismantle.The technique stores payloads on public blockchains through read-only function calls that avoid transaction fees and leave no visible history.Still targeting developers, back in April, the attackers established legitimate US companies using stolen identities, with Silent Push researchers discovering Blocknovas registered to a vacant South Carolina lot and Softglide traced to a Buffalo tax office.It was discovered that both were serving as fronts for the "Contagious Interview" campaign that distributes malware through technical assessments.These security threats keep growing even as crypto-related loss...