AI Coding Tool Used by Coinbase Exposes Firms to Self-Spreading Malware

A newly disclosed vulnerability in an AI-powered coding tool favored by Coinbase has raised alarms across the cybersecurity and crypto ￰0￱ Takeaways: A new AI coding exploit can silently spread malware across entire codebases using hidden markdown instructions. Coinbase’s preferred tool, Cursor, is among several AI assistants shown to be ￰1￱ Brian Armstrong’s aggressive AI rollout has sparked backlash from developers and security ￰2￱ to cybersecurity firm HiddenLayer , the flaw allows attackers to stealthily inject malicious code that can spread across an entire organization’s codebase with minimal user ￰3￱ attack, dubbed the “CopyPasta License Attack,” exploits how AI tools interpret common developer files like ￰4￱ and ￰5￱ Code Assistants Exposed to Malware via Hidden Markdown By embedding harmful instructions in markdown comments, often hidden from rendered views, attackers can manipulate AI code assistants into propagating malware without developers realizing.

“Injected code could stage a backdoor, exfiltrate sensitive data, or manipulate critical systems, all while remaining buried deep inside files,” HiddenLayer said in a Thursday ￰6￱ firm demonstrated the exploit using Cursor, the AI coding assistant reportedly adopted by every Coinbase engineer as of ￰7￱ said similar vulnerabilities were present in other tools including Windsurf, Kiro, and ￰8￱ concern comes just a day after Coinbase CEO Brian Armstrong claimed that AI now writes up to 40% of the company’s code, a figure he aims to push to 50% next ￰9￱ announcement drew criticism from cybersecurity experts, developers, and crypto insiders who warned of the risks tied to mandated AI adoption.

“This is a giant red flag for any security-sensitive business,” said Larry Lyu, founder of decentralized exchange ￰10￱ Mellon professor Jonathan Aldrich called the policy “insane,” adding that he would not trust Coinbase with his funds after hearing it. ~40% of daily code written at Coinbase is AI-generated. I want to get it to >50% by ￰11￱ it needs to be reviewed and understood, and not all areas of the business can use AI-generated ￰12￱ we should be using it responsibly as much as we possibly ￰13￱ — Brian Armstrong (@brian_armstrong) September 3, 2025 Delphi Consulting’s Ashwath Balakrishnan called the push “performative and vague,” while Bitcoiner Alex Pilař stressed that Coinbase, as a major crypto custodian, should prioritize security over AI adoption ￰14￱ has defended the move , saying AI-generated code must still be reviewed and is not used in all parts of the ￰15￱ a blog post, Coinbase’s engineering team clarified that AI use is more common in front-end and less-sensitive systems, while “system-critical exchange systems” remain more cautiously managed.

However, Armstrong admitted during a podcast with Stripe co-founder John Collison that he had enforced AI onboarding at Coinbase, going as far as firing engineers who refused to use the tools. “I went rogue,” Armstrong said. “They got fired.” TIME Names Coinbase a 2025 ‘Disruptor’ Among Most Influential Companies As reported, TIME has recognized Coinbase as one of 2025’s 100 Most Influential Companies , labeling the crypto exchange a “disruptor” for its significant role in shaping US digital asset policies and ￰16￱ noted the exchange as a key driver behind the industry’s policy efforts and predicted Coinbase could become the central hub for crypto trading in the ￰17￱ the US, Coinbase is broadening its reach in Europe, securing a license under the EU’s MiCA regulatory framework through Luxembourg’s financial regulator.