Here’s a story about doing the right thing and getting punished for it. On July 3, a researcher operating under the handle @0xEtherlect found a vulnerability in Merit Systems’ AI-powered “agentic wallet” product, drained $20K to prove the flaw was real, and then returned all of the funds.
Merit Systems’ response was not a thank-you note. The company blacklisted him.
Three days later, on July 6, the Ethos Network, a decentralized reputation platform, formally marked Merit Systems’ profile as “Questionable.” The designation came with an on-chain slash to the company’s reputation score, creating a permanent, tamper-proof record of the incident that anyone can verify.
What actually went wrong
The vulnerability itself was almost comically straightforward. Merit Systems’ agentic wallet, developed under the handle @agentcashdev, lacked spend caps on its API calls. In English: the system had no ceiling on how much money could be charged through a single interaction.
@0xEtherlect did exactly that, pulling $20K from the system to demonstrate that the guardrails simply didn’t exist. The fact that he returned every cent suggests his intent was disclosure, not theft.
The company behind the wallet
Merit Systems isn’t some obscure weekend project. The company raised $10 million in a seed funding round on January 16, 2025, with backing from a16z crypto and Blockchain Capital.
The company’s stated mission is to revolutionize ownership, attribution, and payment systems through automation, particularly for open-source software contributors, targeting automated interactions within frameworks like GitHub to enhance contributor compensation via smart contracts and dedicated wallets.
On-chain reputation has teeth
The Ethos Network’s decision to slash Merit Systems’ reputation score is notable because it represents a relatively new form of accountability in crypto. Once that “Questionable” designation lands on-chain, Merit Systems can’t call a PR firm and make it disappear. It exists as a permanent artifact that potential users, partners, and investors can reference.
What this means for investors and users
For anyone who invested in or was considering using Merit Systems’ products, the incident creates two distinct concerns.
The first is technical. A wallet product that lacks basic API spend caps is a product that wasn’t ready for real-world use. The $20K that @0xEtherlect drained was returned voluntarily. A malicious actor wouldn’t have been so generous.
The second concern is cultural. How a company responds to security researchers tells you a lot about its internal priorities. Companies that punish disclosure tend to get less of it, which means vulnerabilities stay hidden longer, which means users bear more risk.
For a16z crypto and Blockchain Capital, their names are attached to a portfolio company that just earned a public reputation slash for blacklisting the person who found a critical bug.
Disclosure: This article was edited by Editorial Team. For more information on how we create and review content, see our Editorial Policy.

1 hour ago
16









English (US) ·