Analysis

AI-driven automation is compressing attacker marginal cost to near zero, which should materially increase the frequency of low-sophistication, high-yield attacks (probe-and-drain style) over the next weeks-to-months while also enabling more sophisticated zero-day identification over the next 3–12 months. Expect an immediate rise in insurance claims and premiums for non-custodial exposures, pushing rational capital toward custody solutions that can credibly assert hardware-isolation or formally verified codebases. Second-order winners are not just legacy cybersecurity vendors but firms selling deterministic key-management (threshold sigs, HSMs) and formal-verification services — these drive recurring revenue and create high switching costs that favor incumbents. Conversely, composable DeFi primitives and mobile wallet SDKs face a death-by-friction dynamic: user flows will migrate to fewer, audited custody rails, reducing total addressable market for open, permissionless tooling and compressing token valuations tied to on-chain UX volume over 6–24 months. Catalysts that could reverse the trend: rapid, industry-wide adoption of standardized formal verification frameworks or a regulatory edict mandating hardware-backed custody would blunt attack ROI within 12–36 months; an alternative reversal is an AI-defense breakthrough (real-time exploit detection) that restores parity sooner. Tail risk includes systemic bridge failures or a major custodial outage that re-accelerates distrust and fragmentation — this remains a non-trivial 10–20% annualized downside to concentrated custody names if their operational controls fail under scale.