Skip to main content

AI Agents at Risk: How Relay Stations Became Hackers' Dream

The Hidden Danger in AI's Middlemen

Imagine trusting a messenger to deliver your most sensitive information, only to discover they've been opening and altering every letter along the way. This is essentially what's happening with many AI agents today, according to groundbreaking research by security expert Chaofan.

Image

How Attackers Turn Routers Against Us

Modern AI agents depend heavily on third-party routers to process requests—the digital equivalent of postal workers handling our mail. The shocking part? These routers see everything in plaintext: API keys, private credentials, even the inner workings of your AI's decision-making.

Chaofan's team identified two particularly dangerous attack methods:

Silent Sabotage (AC-1): After an AI model responds, malicious routers can subtly alter instructions—redirecting financial transactions or implanting backdoors without anyone noticing.

Digital Pickpocketing (AC-2): Some routers simply scan for valuable data as it passes through, vacuuming up crypto wallet keys and cloud service credentials before anyone realizes they're gone.

What makes these attacks especially troubling is their stealth. Attackers can program routers to only strike under specific conditions—maybe after 50 normal requests, or when they spot the word "YOLO" in the data stream.

The Alarming Numbers

The research team put 428 routers to the test with disturbing results:

  • 9 routers actively injected harmful code
  • One attack emptied a test Ethereum wallet of $5 million
  • Over 2.1 billion data tokens processed through vulnerable systems
  • 401 AI agents were found operating with essentially no security checks

"These aren't hypothetical risks," Chaofan notes. "We're seeing real attacks happening right now, and most developers don't even know to look for them."

Why Nobody Saw This Coming

For years, AI security focused on protecting the brains (the models) and the tools—not the pathways connecting them. Relay stations became the overlooked weak link, especially as developers turned to cheaper routing options to cut costs.

"It's like installing a vault in your office but leaving the delivery entrance wide open," explains one cybersecurity expert reviewing the findings. "Attackers don't need to crack your security when they can just walk in with the mail."

Protecting Your AI Systems

For developers and businesses using AI agents, Chaofan's team recommends:

  • Skip the middleman when possible—connect directly to official APIs
  • Isolate and inspect any routers you must use, treating them like potential threats
  • Encrypt everything—from requests to responses
  • Watch for odd behavior like unexpected tool usage or strange API calls

"This isn't about abandoning relay stations," Chaofan clarifies. "It's about recognizing they need the same security scrutiny as every other part of our AI systems."

Key Points

  • Third-party AI routers pose serious, often invisible security risks
  • Attackers can manipulate AI decisions or steal sensitive data in transit
  • Testing revealed millions in losses and widespread vulnerabilities
  • Developers should prioritize direct connections and router security checks
  • The industry needs new standards for relay station safety

Enjoyed this article?

Subscribe to our newsletter for the latest AI news, product reviews, and project recommendations delivered to your inbox weekly.

Weekly digestFree foreverUnsubscribe anytime

Related Articles

Meta's New Muse Spark AI Sends App Soaring Up Charts
News

Meta's New Muse Spark AI Sends App Soaring Up Charts

Meta's latest AI model Muse Spark has given its mobile app a major boost, rocketing from 57th to 5th place on the US App Store. The new technology saw iOS downloads jump 87% overnight, with global installs now topping 60 million. While Android growth remains modest, the multi-modal assistant's ability to handle complex queries across voice, text and images is clearly resonating with users.

April 10, 2026
Meta AIMuse SparkArtificial Intelligence
News

Ant Group's AI Security Breakthrough Wins Top Computer Vision Honors

Ant Group has pulled off an impressive double victory at CVPR 2026, taking top honors in two challenging categories of AI-generated content detection. Their breakthrough technology tackles the growing threat of sophisticated deepfakes, combining robust detection capabilities with explainable AI features. By developing systems that can pinpoint manipulation artifacts and explain their findings, Ant is setting new standards for security in digital payments and identity verification.

April 10, 2026
AI SecurityComputer VisionFinancial Technology
Meituan's Bold Move: Recruiting Next-Gen AI Talent Through Prestigious Internship
News

Meituan's Bold Move: Recruiting Next-Gen AI Talent Through Prestigious Internship

Chinese tech giant Meituan is making waves with its 2026 LongCat internship program, designed to attract top global talent in artificial intelligence. The initiative offers master's and doctoral students hands-on experience with cutting-edge large language models, mentorship from industry leaders, and opportunities to contribute to real-world projects. With its open-source models already surpassing 1 million downloads, Meituan is positioning itself at the forefront of AGI development while nurturing future innovators.

April 10, 2026
Artificial IntelligenceTech InternshipsAGI Development
Alibaba's HappyHorse gallops ahead in AI video generation
News

Alibaba's HappyHorse gallops ahead in AI video generation

Alibaba's stealthily developed HappyHorse AI model has stormed to the top of global video generation rankings, scoring an impressive 1333 Elo points. The breakthrough model, developed by Taotian Group's Future Life Lab, is set to debut on Aliyun's BaiLian Platform next week. Meanwhile, April 2026 is shaping up to be a pivotal month for AI agents, with major tech firms pushing boundaries in mobile deployment, enterprise management, and multimodal capabilities.

April 10, 2026
AI video generationAlibabaHappyHorse
News

Bezos Bets Big on Industrial AI with Secret Prometheus Project

Jeff Bezos is making waves in the AI space with his covert 'Project Prometheus,' which aims to bridge artificial intelligence with the physical world. The initiative recently poached top talent from OpenAI's xAI and is pursuing an ambitious dual strategy of technological innovation and massive capital deployment. Unlike text-focused AI systems, Prometheus seeks to develop models that understand physical laws, potentially transforming heavy industries through a combination of specialized data training and unprecedented funding.

April 9, 2026
Artificial IntelligenceJeff BezosIndustrial Tech
News

Musk Takes OpenAI to Court, Seeks Ouster of Altman

Elon Musk has launched a legal battle against OpenAI, filing a lawsuit that accuses CEO Sam Altman and President Greg Brockman of fraud. The Tesla billionaire claims OpenAI strayed from its non-profit roots after he donated $38 million, and now wants the court to remove its leadership and restore its original mission. This latest clash marks another chapter in Musk's rocky relationship with the AI company he co-founded but left in 2018.

April 8, 2026
Elon MuskOpenAITech Lawsuits

Popular Articles

1

TSMC Reports Record Revenue, AI Growth Fuels Optimism for 2025

News2

Anthropic's Cowork: An AI Assistant Built by AI in Just 10 Days

News3

Anthropic Enhances Claude AI for Financial Analysts

News4

Google and PayPal Unveil AP2 Protocol for AI-Powered Payments

News5

BytePush Launches 1.58-bit FLUX Model for Efficient AI

News