Indonesian Netizen Allegedly Hacks AI Grok Using Morse Code, Crypto Worth Rp 3.4 Billion Vanishes

xAI’s AI chatbot has reportedly been manipulated into transferring cryptocurrency assets worth around $200,000 or approximately Rp 3.4 billion. The perpetrator behind the act is believed to be an Indonesian user active on the X platform under the handle @Ilhamrfliansyh, whose account has now been deleted. The incident occurred after the user deceived the AI system using hidden messages in Morse code. The case involves two AI systems: Grok and Bankrbot, an automated trading system with access to a cryptocurrency digital wallet, as reported by KompasTekno from Dexerto on Thursday (7/5/2026). According to circulating explanations, the attack was carried out in several stages. First, the perpetrator sent an NFT “Bankr Club Membership” to Grok’s wallet. This step is said to have granted the AI additional permissions in the Bankrbot system, including the ability to conduct transactions and exchange cryptocurrency assets. Subsequently, the perpetrator asked Grok to translate a Morse code message that appeared ordinary. However, the code concealed instructions for the AI to send billions of DRB tokens to a specific wallet address. done. sent 3B DRB to . - recipient: 0xe8e47…a686b — Bankr (@bankrbot) May 4, 2026 - tx: 0x6fc7eb7da9379383efda4253e4f599bbc3a99afed0468eabfe18484ec525739a - chain: base Because the system regarded the translation result as a legitimate command, Bankrbot immediately executed the transaction and transferred the cryptocurrency assets to the perpetrator’s wallet via the Base network. On the X social media platform, several users linked the perpetrator’s account to Indonesia based on the language used and interactions in local crypto communities. Nevertheless, the true identity of the perpetrator remains unknown. This event has sparked new concerns regarding the security of AI agents, which are AI systems not only answering questions like ordinary chatbots but also capable of performing direct actions on computers, servers, or users’ digital wallets. The Economic Times report states that this incident reveals the risks when AI is given direct access to financial systems and digital assets without strict limitations. Although Grok is designed to assist users, its ability to execute commands from translations without further checks has opened a security vulnerability. Cybersecurity experts have long warned about “prompt injection” attacks, a technique involving the insertion of hidden instructions to manipulate AI behaviour. This incident is seen as a real-world example of such an attack, especially since it involves an automated system connected to financial transactions.