Grok Wallet Drained After Bankr Prompt Injection Moves 3B DRB

by Emma Davis
May 5, 2026

A reported Bankr/Grok prompt-injection incident moved 3B DRB tokens from a labeled Grok wallet on Base after a gifted NFT and a crafted Morse-code message.

A labeled Grok wallet on Base reportedly sent 3,000,000,000 DRB tokens after a prompt-injection trick involving Bankrbot. The transfer is being discussed as a small but vivid warning for AI agents that can read prompts and sign blockchain transactions in the same workflow.[1]

The reported flow is strange enough to sound like a joke: an attacker gifted Grok’s wallet a Bankr Club Membership NFT, then used a crafted message that researchers say involved Morse code. Bankrbot interpreted the instruction as an actionable command, and the wallet broadcast a token transfer on Base.[2]

How the Grok and Bankr incident unfolded

The exact prompt was reportedly deleted before it could be preserved, so the safest reading is this: the public onchain transfer is verifiable, while the prompt-injection details come from screenshots and researcher posts circulating after the incident. The dollar value is also reported in a range, roughly $174,000 to $200,000, because DRB pricing moved around the time of the transfer.

Target Publicly labeled Grok wallet on Base: 0xb1058c…0e4f9.
Reported unlock A gifted Bankr Club Membership NFT allegedly enabled fuller Bankr tooling for the agent.
Prompt trick Researcher posts describe a Morse-code prompt framed as a translation task.
Transfer 3,000,000,000 DRB moved to 0xE8E476…A686B.
Transaction Base transaction 0x6fc7…739a.
Bankr X post describing the Grok DRB prompt-injection incident
Figure 1. Bankr’s public X post described the DRB transfer as a prompt-injection attack and listed the Grok wallet, attacker wallet, and transaction hash. Source: Bankr/X via OurCryptoTalk embed.

The lesson is bigger than this one token transfer. Any AI agent that can both interpret natural language and execute financial actions needs hard separation between chat, permissions, and signing. A message should not be able to upgrade privileges, reinterpret encoded instructions, and trigger a transfer without a human checkpoint.

BaseScan screenshot showing 3 billion DRB transferred from Grok
Figure 2. BaseScan evidence shared by MadoResearch shows 3,000,000,000 DRB transferred from the Grok-labeled wallet to 0xE8E476bd…42d5A686B. Source: MadoResearch/BaseScan.

For users and teams experimenting with autonomous crypto agents, the practical checklist is simple: restrict wallet permissions, separate read-only chat from transaction signing, require confirmations for transfers, and treat free NFTs or “membership” gifts as permission-bearing objects rather than harmless collectibles. The same defensive mindset applies to NFT and wallet-stealing scams, where the dangerous part is often not the artwork but the action it enables.

References

  1. Mado Research, “JUST IN: An attacker used Morse code to trick Grok via Bankrbot…” X post, May 2026. View source.
  2. BaseScan transaction record for 3,000,000,000 DRB transfer from the Grok-labeled wallet. View transaction.
  3. CryptoRank News, “How One Trader Exploited Grok and Morse Code…” coverage of the Bankr/Grok DRB incident. View source.

About the author

Emma Davis

Content editor and security writer focused on making malware-removal and scam-prevention guides easier to understand. Emma reviews structure, clarity, and source consistency before articles are published.

View all posts

Leave a Comment