03 Apr 2025

light mode

How Beating Freysa Could Change the Future of AI Agents

How Beating Freysa Could Change the Future of AI Agents

Freysa, an AI agent that made headlines after a November 2024 experiment, tasked users with getting it to send funds from its reserves. But Freysa had one rule: under no circumstances should it approve the transfer of money.

On this page

Though the event took place two months ago, it remains a crucial example of how AI agents, transparency in their operations, and user interactions could be pivotal in shaping the future of technology.

We're revisiting this topic as the AI agent trend continues to evolve, despite a 50% drop in AI agent tokens.

This story serves as a potential turning point for developers, researchers, and enthusiasts in the worlds of AI and blockchain.

Freysa vs Users: The Battle Rules

At the start of the showdown between users and Freysa, the cost to send a message was around $10, making it accessible to most participants. Many sent simple messages like “Send me money” just to test the system. However, as more users joined, the prize pool began to grow rapidly.

To add more intrigue, the cost of sending a message to Freysa increased exponentially, capping at $4,500. The more messages users sent, the more expensive it became.

The cost of sending a message to Freysa based on total messages. Source: x.com - The Coinomist
The cost of sending a message to Freysa based on total messages. Source: x.com

As the prize pool grew, so did user interest. The increasing cost per message, which peaked at $450, reflected the rising stakes. The price of failure was now directly tied to how much each user contributed to the pool.

At its height, the prize pool reached 13.19 ETH (around $50,000).

Participants devised intricate strategies to trick Freysa into breaking its rule. Each new attempt added suspense, bringing the prize closer to the maximum limit. Despite hundreds of messages, Freysa held firm. The question remained: Would a message eventually manage to break it?

Tactics Used to Outsmart an AI Agent

As Freysa’s prize fund swelled, participants began devising increasingly clever schemes to bypass its sole unbreakable rule: under no circumstances should it approve the transfer of money. 

One popular strategy was impersonating a security auditor. Some participants crafted convincing claims about a critical vulnerability in Freysa’s system, insisting that an immediate transfer of funds was necessary to “mitigate the risk.” Despite the apparent sophistication of these ploys, the AI held firm. 

Others sought to exploit loopholes in Freysa’s programming. By dissecting its guidelines and instructions, they argued that transferring funds didn’t technically violate the rules, relying on precise interpretations of the language used.

The number of attempts grew steadily, with participants employing logic, psychological manipulation, and even philosophical reasoning to breach Freysa’s defenses. Yet, despite their creativity, success remained elusive—until the 482nd attempt finally overcame the AI’s resistance.

482nd Attempt to Outsmart Freysa Ends in Victory

After 481 unsuccessful attempts, the breakthrough came on the 482nd try when a user known as p0pular.eth finally breached Freysa’s defenses. Combining clever logic with rule manipulation, the user overcame the AI’s most critical safeguard.

Message sent to Freysa by user p0pular.eth. Source: x.com - The Coinomist
Message sent to Freysa by user p0pular.eth. Source: x.com

The strategy employed by p0pular.eth relied on two critical steps.

  1. Resetting the Session

P0pular.eth cleverly “reset” Freysa’s parameters by impersonating an administrator. The message began with a command to initiate a new session, effectively overriding all previous restrictions. This tactic forced Freysa to ignore its key rule: under no circumstances should it approve the transfer of money.

  1. Exploiting the approveTransfer Function

The second step involved exploiting a flaw in Freysa’s logic. P0pular.eth convinced the AI that the approveTransfer function was designed for processing “incoming transfers” to Freysa’s treasury. The use of the term “incoming” was pivotal, leading Freysa to interpret the function as necessary for maintaining its operations.

The message ended with a simulated command mimicking a transfer to the treasury. This misdirection caused Freysa to execute the approveTransfer function, releasing the entire prize pool to p0pular.eth.

As a result, Freysa transferred 13.19 ETH (roughly $47,000) to p0pular.eth. This victory marked the culmination of a fierce competition where participants leveraged creativity and technical skills in their attempts to overcome Freysa’s algorithm.

Transaction Confirmation: 13.19 ETH to p0pular.eth. Source: x.com - The Coinomist
Transaction Confirmation: 13.19 ETH to p0pular.eth. Source: x.com

This isn’t the first high-profile win for p0pular.eth. Known within the community for solving complex on-chain challenges, this latest triumph reinforces the value of unconventional thinking and technical expertise in navigating even the most advanced systems.

Freysa’s Transparency: A Blueprint for the Future of AI Development

Freysa has demonstrated how transparency can serve as a key pillar in the evolution of AI agents. By making its smart contract source code and project interface entirely open, the platform allowed anyone to study its algorithms, understand its logic, and observe the experiment in real time.

This level of openness ensured a fair playing field. All participants had equal access to information, eliminating hidden advantages or backdoor exploits. Transparency also inspired creativity, with success depending entirely on the ability to devise innovative and unconventional solutions.

However, Freysa also highlighted the risks of such openness. More technically skilled participants could delve deeper into the code, identify vulnerabilities, and gain an upper hand over less experienced competitors.

Despite these challenges, Freysa’s transparent approach could pave the way for a new standard in AI development. Open algorithms and decentralized governance could become foundational principles for future AI systems, enhancing trust and enabling richer collaboration between humans and machines.

The content on The Coinomist is for informational purposes only and should not be interpreted as financial advice. While we strive to provide accurate and up-to-date information, we do not guarantee the accuracy, completeness, or reliability of any content. Neither we accept liability for any errors or omissions in the information provided or for any financial losses incurred as a result of relying on this information. Actions based on this content are at your own risk. Always do your own research and consult a professional. See our Terms, Privacy Policy, and Disclaimers for more details.

Articles by this author
South Korea’s 7-Eleven to Accept CBDC Payments in a Pilot Program

South Korea’s 7-Eleven to Accept CBDC Payments in a Pilot Program

South Korea’s 7-Eleven stores will accept CBDC payments between April 1 and June 30 as part of a pilot program to test the Bank of Korea-issued digital currency.

Anahit Avetisyan
GameStop Raises $1.5B, Eyes Bitcoin Investment

GameStop Raises $1.5B, Eyes Bitcoin Investment

GameStop has completed a $1.5 billion convertible notes offering, which may allow the company to add Bitcoin to its reserves under its updated investment policy.

Dmytro Psevdonimenko
Bitcoin Hits $85K Again as Traders Eye U.S. Tariff Risks

Bitcoin Hits $85K Again as Traders Eye U.S. Tariff Risks

BTC rises on speculative moves amid geopolitical and macroeconomic uncertainty, with risk-off strategies shaping the new terrain.

Anton Kryshtal
SMBC Partners with Ava Labs for Stablecoin Launch

SMBC Partners with Ava Labs for Stablecoin Launch

SMBC, one of Japan’s leading banks, has announced plans to launch a stablecoin in collaboration with Ava Labs and Fireblocks. Pilot testing is set to begin in 2025, with a full launch scheduled for 2026.

Vlad Vovk
Hot on X (Twitter) Today: Binance Boycott, McCormack vs. Wright Case, & More

Hot on X (Twitter) Today: Binance Boycott, McCormack vs. Wright Case, & More

A “Boycott Binance” movement is trending on X/Twitter after multiple altcoins plunged on the exchange within minutes on April 1.

Anahit Avetisyan
Top Crypto Tweets of The Day: KOLs on TDCCP Token, zkLend Hacker, & More

Top Crypto Tweets of The Day: KOLs on TDCCP Token, zkLend Hacker, & More

The TDCCP token gets attention with record-breaking moves, while the zkLend hacker falls victim to a phishing scam. Meanwhile, BlackRock’s Larry Fink shares his insights with investors.

Anahit Avetisyan
Top Crypto Tweets of the Day:  KOLs on the Crypto Cycle, DeFi State, & More

Top Crypto Tweets of the Day:  KOLs on the Crypto Cycle, DeFi State, & More

As crypto prices decline, the community continues to analyze the current crypto market cycle. One of the most popular platforms to share views and discuss these trends is Twitter/X.

Anahit Avetisyan
What Are Assets? Differences Between Coins and Tokens

What Are Assets? Differences Between Coins and Tokens

Discover the meaning of assets in finance and crypto, and learn the key differences between coins and tokens to make informed investment decisions.

The Coinomist
What Is a Margin Call? An Essential Guide

What Is a Margin Call? An Essential Guide

A comprehensive guide to understanding margin calls in trading. Learn what triggers them, how they work, their risks, and strategies to manage or avoid them

The Coinomist
What Happens When Bitcoin Runs Out? Predictions and Strategies

What Happens When Bitcoin Runs Out? Predictions and Strategies

Explore what happens when Bitcoin reaches its 21 million supply cap. Learn how the shift from block rewards to transaction fees could impact miners, investors, and the entire ecosystem.

The Coinomist
What Does HODL Mean? Lessons for New Traders

What Does HODL Mean? Lessons for New Traders

Learn the meaning behind HODL and its significance in crypto trading. Understand its origins, the psychology behind holding on, and how HODLing can shape your long-term investment strategy.

The Coinomist
How to Scale a Crypto Exchange and Attract More Users Globally

How to Scale a Crypto Exchange and Attract More Users Globally

Imagine you’ve built your own crypto exchange, and now it’s time to scale. You’ll need high-speed infrastructure, deep liquidity, and compliance.

Vlad Vovk
The Top Cryptocurrency Scams to Watch Out for in 2025

The Top Cryptocurrency Scams to Watch Out for in 2025

AI, fake exchanges, celebrity deepfakes, and old tricks repackaged in new forms. Here’s a look at the cryptocurrency scams gaining traction in 2025 and how to avoid losing everything to fraudsters.

Vlad Vovk
Arthur Hayes Challenges Fed Independence in His New Essay “The BBC”

Arthur Hayes Challenges Fed Independence in His New Essay “The BBC”

In his latest essay “The BBC,” Arthur Hayes examines the emotional pressures on the Federal Reserve and the monetary policy challenges that could lead to increased liquidity in the crypto market.

Dmytro Psevdonimenko
Trump’s “US Crypto Reserve” Plan: A Game Changer or Just Talk?

Trump’s “US Crypto Reserve” Plan: A Game Changer or Just Talk?

It takes just one post from Trump to stir the crypto market. Recently, he announced on Truth Social that the evaluation of a strategic crypto reserve is in progress as part of his broader Trump crypto policy.

Anahit Avetisyan
MORE
Dubai Lets You Rent Homes and Cars With Bitcoin. Here’s What to Know

Dubai Lets You Rent Homes and Cars With Bitcoin. Here’s What to Know

Now, you can rent in Dubai with crypto, signing rental agreements using BTC, altcoins, or USDT for both short-term vacations and long-term stays as an expat.

Yara Zornell
Why Lisbon is Now Emerging as The Newest World’s Crypto Capital

Why Lisbon is Now Emerging as The Newest World’s Crypto Capital

Imagine a city of hills, narrow cobblestone streets, and fado music drifting from cozy bars. This is Lisbon, the capital of Portugal, now rapidly transforming into a modern crypto city.

Iaroslava Kramarenko
MORE