11
Why crypto hacks don’t end and continue even when the money is gone
Cryptocurrency projects and exchanges continue to face escalating losses from increasingly sophisticated hacks, despite a decline in the number of incidents. In the 12 months ending March 2025, reported hacks dropped by 44% to 184 cases, yet total stolen funds rose 33% to $3.6 billion. This trend reflects a shift toward fewer but far more damaging attacks, such as the $1.5 billion breach of Bybit in February 2025, which exploited a JavaScript poisoning vulnerability to hijack multisignature approvals.
Main Analysis
Security breaches remain the costliest type of attack, accounting for 56 incidents and nearly 70% of total losses during the latest period. DeFi exploits and frauds, while more frequent, have decreased in both number and financial impact. However, fraud still caused $716 million in losses, highlighting that scams and manipulations remain a significant risk for users and operators alike. Historical cases reveal a pattern of operational weaknesses and inadequate security protocols. For example, the 2020 KuCoin hack involved malware installed on an employee’s computer, allowing hackers to withdraw 336 BTC in minutes. Similarly, the Korean exchange Upbit lost $49 million worth of Ethereum during a hot wallet transfer, underscoring the dangers of managing assets between hot and cold wallets without robust safeguards. Decentralized finance platforms are not immune. Lendf.Me lost 99.95% of its funds in 2020 due to a re-entrancy attack that let hackers repeatedly withdraw funds before transactions were finalized. Balancer’s protocol was also exploited for about $500,000 in tokens through a complex vulnerability. These incidents highlight the challenge of securing smart contracts and the absence of compensation mechanisms for victims in many DeFi projects. Data breaches compound the risks. Gatehub’s 2019 hack exposed 1.4 million users’ personal details and 2FA keys, while Coinmama suffered a massive data leak affecting 450,000 users, even though it does not custody cryptocurrencies directly. Such breaches increase the risk of phishing and wallet theft, as attackers gain access to sensitive credentials and can bypass two-factor authentication. Industry reports indicate that the average loss per hack remains high, with Immunefi’s 2026 report citing a median cost of $2.2 million and an average nearing $25 million due to a few massive breaches. Market reactions to hacks are severe: affected tokens typically lose about 10% of their value within two days, and 84% remain below pre-hack prices six months later, signaling long-term damage to project viability and investor confidence. For users and operators, vigilance around wallet management, transaction monitoring, and withdrawal controls is critical. Hot wallets, in particular, are frequent targets, and exchanges must implement multi-layered security, including real-time anomaly detection and strict API token management. Regulatory trends in 2025 emphasize AML and KYC as foundational defenses, while forensic tracing of stolen funds through mixers and cross-chain swaps is becoming more sophisticated. Ultimately, the evolving threat landscape demands continuous security investment and transparent communication with users about risks and incident responses. Projects should prioritize isolating funds, auditing smart contracts, and preparing contingency plans for rapid incident containment. Users must verify platform licensing, withdrawal policies, and bonus conditions carefully before engaging, recognizing that recovery of stolen assets remains rare.
