Web3 security firm GoPlus Security said older smart contracts are increasingly being targeted in a recent wave of exploits, with attackers using AI to quickly identify and abuse vulnerabilities. According to ChainCatcher, the firm said long-running contracts deployed years ago have become a key focus for attackers.
GoPlus cited several recent incidents involving older contracts. On June 9, a Token of Power (TOP) contract deployed seven years ago on Ethereum was attacked, with losses of about $1.5 million. On May 25, the three-year-old WUSD.fi contract was exploited, with losses of about $200,000.
GoPlus also pointed to two attacks on Aztec Network tied to older contracts deployed two years earlier, occurring on June 14 and June 18, with total losses exceeding $4 million.
The firm said traditional audit approaches may struggle to adequately cover legacy contracts, and argued that AI-based continuous auditing services, described as “Always-on Audit,” could be an effective way to assess older contracts quickly while balancing reliability and cost.