This episode features Jesse (Web3 prosecutor turned protector at Rivet Capital), V (former SEC attorney now in Web3), and host Catherine (KK, legal counsel at Starkware), recording from the Eve Wealth Summit in Phoenix, Arizona.

The conversation covers the recent wave of DeFi exploits including Kelp DAO's $300 million bridge compromise, the Ninth Circuit's skeptical reception of prediction markets' legal arguments, and Amex's breakthrough in agentic commerce with AI agent purchase protection.

The hosts also reflect on their experience at Paris Blockchain Week, including an elaborate dinner at Versailles, while discussing the broader tensions between crypto's permissionless ideals and the growing need for user protection and accountability.

DeFi Exploit Crisis: From Bridge Failures to Systemic Risk

Kelp DAO lost nearly $300 million when attackers exploited a one-of-one verifier setup on Layer Zero's bridge, allowing them to forge cross-chain messages and mint unbacked restaked ETH

The attack escalated beyond a simple bridge exploit when attackers used the minted tokens as collateral on Aave to borrow real assets, creating system-wide contagion effects

47% of Layer Zero users chose the vulnerable one-of-one verifier configuration, raising questions about whether platform defaults effectively guide teams toward insecure architectures

V argues against 'grave dancing' accusations when discussing exploit accountability: 'It actually reminds me so much of whenever there's like a mass shooting and people are like, you're not allowed to talk about gun control, only thoughts and prayers'

Legal Liability in DeFi's Finger-Pointing Culture

Traditional negligence frameworks struggle in DeFi because it's often unclear who had a duty of care, with Kelp and Layer Zero pointing fingers at each other over the exploit

Catherine notes that plaintiffs' attorneys will likely sue everyone involved: 'Plaintiffs' attorneys throw everything they can at everyone they can, frankly. It's a very strategic tactic'

As DeFi moves beyond 'DeGen phase' to mainstream retail users, accountability expectations change: 'If my mom loses $15, she's calling the SEC' - V

DOJ prosecutors say they can always find someone to subpoena in DeFi cases, challenging the notion of true decentralization from a legal perspective

Prediction Markets Face Ninth Circuit Skepticism

Three Trump-appointed Ninth Circuit judges grilled prediction markets and FCMs, showing open skepticism toward the CFTC's federal preemption argument against state gambling laws

Judge Nelson delivered a devastating assessment of the CFTC's position, calling it 'not a serious argument' regarding Rule 4011's interpretation on gambling contracts

The Ninth Circuit decision could take 60-120 days, with potential for Supreme Court review if circuits split on prediction market regulation

Catherine will speak on a panel titled 'Are Prediction Markets Gambling?' at ConsenSys, highlighting the central legal question facing the industry

Amex Solves Agentic Commerce While Crypto Lags Behind

Amex launched agent purchase protection covering AI booking errors with partners including Delta, Expedia, Hilton, Stripe, and PayPal - the first payment provider to accept liability for AI agent mistakes

Amex addressed three core challenges: identity through agent registration with tokenized credentials, mandates via programmable guardrails, and accountability through liability coverage

Jesse argues crypto should naturally lead agentic commerce: 'If I were building a payment system from scratch for AI agents, most people would pick blockchain nine times out of 10'

The opportunity exists but requires immediate action: 'Stop tolerating the hacks and your customers getting rug pulled because crypto's real opportunity is not just to do it like Amex but build something programmable and durable'

DeFi's Permissionlessness Paradox

Austin Campbell noted that crypto's core values of decentralization and permissionlessness 'creates a reality that maximally empowers bad actors and criminals'

V suggests distinguishing between decentralization and permissionlessness, proposing constraints like rate limits: 'A rule that says a new user can't just deposit and borrow $300 million in one shot'

The industry faces a choice between maintaining ideological purity and implementing practical safeguards as mainstream adoption increases liability expectations

Catherine warns that regulatory overreaction is inevitable without self-regulation: 'The best way to get regulated is to fail to regulate yourself'