Principal Product Security Engineer @ EigenLabs

Anto Joseph

I lead product and infrastructure security at EigenLabs across protocol design, governance, EigenAI, detection tooling, applied cryptography, and adversarial AI systems.

anto@dev-machine:~
$ whoami
principal_product_security_engineer
$ ls -la interests/
drwxr-xr-x protocol_security
drwxr-xr-x applied_crypto_zk
drwxr-xr-x adversarial_ml
drwxr-xr-x detection_tooling
$ ./current_focus.sh
"EigenAI threat modeling + protocol security"
$
View Experience LinkedIn GitHub Profile
$25B+
Protocol Capital Protected
12+
Years in Security
2018
AI Village Co-created
6
OSS Projects
4
Awards & Recognition
// About

Who I Am

I am a developer turned security researcher focused on systems where software, incentives, and adversaries meet. At EigenLabs, I lead product and infrastructure security across protocol, services, governance, and deterministic AI inference, with mitigations protecting $25B+ in protocol-managed capital.

Before EigenLabs, I led security work at Coinbase across the MPC wallet, ETH staking, Coinbase Wallet, and Base L2. My earlier work spans consumer abuse defense at Tinder, mobile and embedded security at Intel and Citrix, and hands-on penetration testing and training at EY.

My research roots include adversarial ML since 2017, applied cryptography and ZK, Android instrumentation, distributed fuzzing, and automated red-teaming. I co-created AI Village at DEF CON in 2018 and have presented research at DEF CON, Black Hat USA, TROOPERS, HITB, BruCon, Shakacon, Hacktivity, and other security conferences.

01 / Protocols
Economic security at protocol scale
Product and infrastructure security for protocol design, services, governance, monitoring, and operator activity.
02 / EigenAI
AI inference threat modeling
Security design for adversarial operators, model and output integrity, and incentive-aligned slashing as an out-of-model mitigation layer.
03 / Coinbase
Wallets, staking, and Base L2
Threat modeling and SDLC for MPC wallet systems, ETH staking, Coinbase Wallet, bridge security, and Base L2.
04 / Research
Adversarial tooling and training
Open-source work and talks across distributed fuzzing, Android instrumentation, adversarial ML, and automated red-teaming.
// Expertise

Security Domains

Protocol Security
Smart Contracts
Applied Cryptography & ZK
MPC Wallets
Mechanism Design
EigenAI / AI Inference
Adversarial ML
Agentic System Security
Detection Pipelines
Distributed Fuzzing
Mobile & Embedded
Product Abuse Defense
// Career

Work Experience

EigenLabs
Principal Product Security Engineer
Sep 2023 - Present
Remote
  • Lead product and infrastructure security across protocol, services, and governance; mitigations defend $25B+ in protocol-managed capital against adversaries with strong economic incentives.
  • Threat-model secure design of EigenAI deterministic AI inference, including adversarial operator behavior, model and output integrity, and incentive-aligned slashing.
  • Build detection and security automation tooling, including continuous monitoring pipelines and signal aggregation across operator activity.
  • Active in cross-organization security research initiatives including SEAL, DSS, and BSidesSF.
Coinbase
Staff Security Engineer
Feb 2021 - Aug 2023
San Francisco Bay Area
  • Drove SDLC and threat modeling for the MPC wallet and enabled ETH staking for Retail and Prime customers.
  • Researched and shipped mitigations against persistent, financially motivated attackers across smart contracts, DeFi protocols, scaling and privacy primitives, and zero-knowledge systems.
  • Designed bridge-security review processes for major scaling solutions; led security for Coinbase Wallet and Base L2.
  • Co-authored Coinbase Engineering's public Euler Finance exploit investigation and presented "Flash Loans Demystified" at DEF CON 29 Blockchain Village.
Tinder
Senior Application Security Engineer
Mar 2018 - Feb 2021
West Hollywood, CA
  • Performed application security assessments, threat modeling, design reviews, and code review for a high-scale consumer platform handling sensitive user data.
  • Designed product-level mitigations against coordinated abuse, impersonation, and harassment vectors.
  • Contributed to mobile security tooling, including open-source contributions to MobSF, and presented FuzzCube at Hacktivity 2020.
  • Co-created AI Village at DEF CON 26 and co-instructed "Hacking Thingz Powered By Machine Learning".
Intel Corporation
Senior Security Engineer
May 2016 - Feb 2018
Bengaluru, India
  • Integrated security across the product lifecycle for mobile, IoT, and wearable devices in Intel's New Devices & Wearables Group.
  • Researched embedded hardware and firmware vulnerabilities through fuzzing; presented Droid-FF at Black Hat USA 2016, HITB Amsterdam 2016, and DEF CON 24.
  • Taught adversarial ML security through a TROOPERS17 full-day training, HITB Amsterdam Lab, DEF CON 25 workshop, and BruCon 0x09 workshop.
Citrix
Security Engineer
Oct 2014 - Apr 2016
Bengaluru, India
  • Performed security analysis of products, advised engineers, reviewed bug fixes, and researched emerging vulnerabilities.
  • Researched Android, Mobile Device Management, and Mobile Application Management security.
EY
Information Security Specialist
May 2014 - Oct 2014
Bengaluru, India
  • Conducted mobile OS reviews, web/thick-client/mobile penetration tests, and developer security training.
// Research

Conference Speaking

DEF CON
24 / 25 / 26 / 29
Speaker, workshop instructor, and AI Village co-creator
Black Hat USA
2016 / 2017
Arsenal presenter for Droid-FF and adversarial ML tooling
TROOPERS
2017
Full-day adversarial ML security training
HITB
Amsterdam 2016 / 2017
Droid-FF talk and adversarial ML lab
BruCon
0x09
Adversarial ML workshop instructor
Shakacon X
2018
Presented "AI Toolkit for Hackers"
Hacktivity
2020
Presented FuzzCube distributed fuzzing platform
Nullcon / Hack In Paris / Hack.lu / PHDays
2016 - 2018
International security talks and workshops
// Writing

Publications

Sep 2025

Why Bug Bounty Programs Are Cracking And How Zero-Knowledge Proofs Can Fix Them

Exploring the fundamental issues with current bug bounty programs and proposing cryptographic solutions using zero-knowledge proofs.

Read on Forbes
2023

Euler Compromise Investigation Part 1: The Exploit

Deep-dive technical analysis of the Euler Finance exploit, examining the vulnerability and attack mechanics.

Read on Coinbase
// Media

Podcasts & Talks

YouTube

Podcast Interview

Watch on YouTube
Spotify

Podcast Episode

Listen on Spotify
// Open Source

Projects

Android instrumentation
frida-android-hooks
Frida-based runtime instrumentation framework for Android method hooking; widely adopted for dynamic analysis with roughly 400 GitHub stars.
View on GitHub
Distributed fuzzing
FuzzCube
Kubernetes-based fuzzing infrastructure for scalable, parallel adversarial-input generation and automated red-teaming workflows.
View on GitHub
Android fuzzing
Droid-FF
Android file-fuzzing framework for automated vulnerability discovery, presented at Black Hat USA, HITB Amsterdam, and DEF CON 24.
View on GitHub
LLM agents
Kube SRE GYM
An RL environment for training LLMs to diagnose and fix Kubernetes incidents against a real k3s cluster using command feedback.
View on GitHub
ZK bug bounties
Zero Trust Bounties
Cryptographically verifiable bug-bounty protocol using zero-knowledge proofs; featured in Forbes in September 2025.
View on GitHub
AI + formal methods
Forge Proof
AI-powered security analysis with formal verification, pairing frontier LLMs with Halmos symbolic execution to find bugs with proof.
View on GitHub
// Recognition

Awards & Achievements

[01]
1st Prize
Wonderland CTF
November 2025
[02]
1st Prize - Security Track
ETHDenver
March 2024
[03]
Ethereum Foundation Prize + Finalist
ETHGlobal NYC
September 2023
[04]
Software Quality Award Finalist
Intel SW Directors' Council
September 2017
NORMAL
main
UTF-8
ln: 1, col: 1
0%