Woofun AI reports that attackers drained approximately $16.9 million from five deprecated smart contracts within a 40-day window spanning May 7 to June 15, 2026. These incidents targeted systems no longer under active development yet still holding significant economic value on-chain.

TrustedVolumes suffered the largest single loss at roughly $5.87 million, while DxSale V1 Locker lost approximately $7.3 million after an obsolete control path re-enabled access to locked liquidity. Aztec Connect faced two consecutive attacks totaling $2.28 million in losses, and Raydium Legacy AMM pool saw $1.34 million stolen from its reserves.

Huma Finance V1 pool recorded a comparatively smaller breach of about $101,000, bringing the aggregate theft across these five distinct entities to the $16.9 million total.

Woofun AI data shows these exploits spanned different chains and architectures, including RFQ settlement, credit pools, LP lockers, AMMs, and rollup exits, rather than reusing a single vulnerability.

The common thread among these breaches is the presence of public code and complete on-chain history in contracts lacking active monitoring or updated security assumptions. Automated scanning tools now leverage code similarity searches, transaction simulations, and AI-assisted auditing to systematically identify such targets at decreasing costs.

Although no public evidence confirms direct AI involvement in these specific five attacks, the capability to scan outdated systems is rapidly outpacing defensive measures for contract migration and decommissioning. This surge in legacy contract exploitation marks a critical failure in the industry's lifecycle management protocols for deprecated financial infrastructure.