Crypto hack counts fall but supply chain attacks reshape threat landscape

cointelegraphPubblicato 2025-12-23Pubblicato ultima volta 2025-12-23

Introduzione

New data from CertiK reveals that while crypto hackers stole $3.3 billion in 2025, the number of attacks fell sharply. Losses were concentrated in fewer, more damaging supply-chain attacks, which accounted for $1.45 billion across just two incidents, including the $1.4 billion Bybit hack. This shift indicates attackers are moving away from simple code vulnerabilities toward more sophisticated infrastructure-level exploits. The number of security incidents decreased by 162 year-over-year, suggesting improved protocol-level security. The median loss per hack fell 35.75% to $103,966, though the average loss rose to $5.3 million due to high-value outliers. Phishing scams were the second-largest threat, costing $722 million across 248 incidents. A significant subset was "pig butchering" romance scams, which used prolonged emotional manipulation and cost the industry $5.5 billion in 2024.

Crypto hackers stole $3.3 billion in 2025, but the number of attacks fell sharply as losses became concentrated in fewer, more sophisticated supply-chain exploits, according to new data from blockchain security firm CertiK shared with Cointelegraph.

While total losses remained elevated, the decline in incident counts and a drop in median theft sizes suggest that protocol-level security is improving, pushing attackers away from simple code vulnerabilities and toward phishing and infrastructure-level attacks.

CertiK said supply-chain breaches emerged as the most damaging threat, accounting for $1.45 billion in losses across just two incidents, including the $1.4 billion Bybit hack in February.

"The Bybit exploit signals that well-capitalized, well-coordinated threat actors are becoming more active across the ecosystem," the report said, predicting a rise in the “sophistication” of supply chain attacks as attackers target more infrastructure providers.

Crypto hacks by amount and incident, yearly chart. Source: CertiK

Related: Soulja Boy token sparks backlash after Base co-founder posts purchase receipt

The number of security incidents decreased by 162 counts year-over-year, indicating that blockchain cybersecurity measures are improving despite hackers aiming for larger targets.

The average amount lost per hack stood at $5.3 million, a 66% increase from the previous year. However, the median loss — a measure less influenced by outlier incidents — fell to $103,966, down 35.75% over the same period.

Cryptop hacks by incident type and amount of losses, one-year chart. Source: CertiK

Related: Solana AI token Ava hit by launch sniping tied to deployer: Bubblemaps

Code vulnerabilities fade as “pig butchering” scams threaten crypto savings

Phishing scams became the second-largest threat, costing crypto investors a cumulative $722 million across 248 incidents.

Recently, an investor lost their entire Bitcoin (BTC) retirement fund in an artificial intelligence-fueled romance scam, also known as a "pig butchering" scam, where the con artists used prolonged emotional manipulation to convince the investors to transfer their funds.

Pig butchering victim stats, grooming time. Source: Cyvers

Pig butchering scams are a subset of phishing scams that cost the industry a collective $5.5 billion in 2024, across 200,000 individual cases.

Notably, the average grooming period for victims is between one and two weeks in 35% of cases, while 10% of scams involve grooming periods of up to three months, according to blockchain security platform Cyvers.

In June, the US Department of Justice announced the seizure of over $225 million in crypto linked to pig butchering scams.

Magazine: Coinbase hack shows the law probably won’t protect you — Here’s why

Domande pertinenti

QAccording to CertiK's data, what was the total amount stolen by crypto hackers in 2025 and what was the most damaging type of attack?

ACrypto hackers stole a total of $3.3 billion in 2025. The most damaging type of attack was supply-chain breaches, which accounted for $1.45 billion in losses.

QWhat does the report suggest about the trend in protocol-level security based on the decline in incident counts and median theft sizes?

AThe decline in incident counts and the drop in median theft sizes suggest that protocol-level security is improving. This is pushing attackers away from simple code vulnerabilities and toward more sophisticated methods like phishing and infrastructure-level attacks.

QWhat was the average amount lost per hack and how much did it change from the previous year?

AThe average amount lost per hack stood at $5.3 million, which was a 66% increase from the previous year.

QWhat are 'pig butchering' scams and how much did they cost the industry in 2024?

A'Pig butchering' scams are a subset of phishing scams that involve prolonged emotional manipulation to convince victims to transfer their funds. They cost the industry a collective $5.5 billion in 2024 across 200,000 individual cases.

QWhat significant action did the US Department of Justice take regarding pig butchering scams in June?

AIn June, the US Department of Justice announced the seizure of over $225 million in cryptocurrency that was linked to pig butchering scams.

Letture associate

Market Trends in US Stocks (June 18): Walsh's Pivot Ignites Broad Sell-Off, SpaceX Suffers First Drop, Semiconductors Sole Safe Haven

**U.S. Market Trends (June 18): Wash Sparks Full-Scale Sell-off; SpaceX's First Drop, Semiconductors the Only Safe Haven** Markets plunged after the June FOMC meeting. The "dot plot" revealed a hawkish shift, with half the officials projecting at least one rate hike in 2024. New Fed Chair Wash, in his press conference, announced the abandonment of forward guidance, stating he "can't tell you what the next step will be." This policy uncertainty triggered a broad sell-off. All major indices fell over 1%, with the S&P 500 down 1.21%. The VIX volatility index jumped 12%. Treasury yields spiked, and the dollar surged to a two-month high, while gold erased its weekly gains. The sell-off was led by rate-sensitive sectors. Meta plunged over 5%, leading the Magnificent 7 lower. SpaceX closed down ~5%, marking its first decline since its IPO, as valuation pressure from higher rate expectations took hold. The sole market bright spot was semiconductors. The Philadelphia Semiconductor Index rose 1.38%, with Applied Materials, Lam Research, and Arm Holdings all posting significant gains. The narrative held that long-term AI computing demand remains intact, driving a rotation of funds from high-valuation software/internet stocks into infrastructure and equipment names. Retail sales data came in strong, and EIA crude inventories fell sharply, supporting the view of persistent inflation and limiting the Fed's scope for easing. Traders fully priced in a rate hike by October, with September seen as likely. In summary, Chair Wash's debut dismantled the market's traditional policy anchors, injecting new uncertainty. While the AI investment thesis provided pockets of resilience in semiconductors, the repricing of rate-sensitive, high-valuation technology stocks appears to have just begun under the new "hawkish reset" framework.

marsbit11 min fa

Market Trends in US Stocks (June 18): Walsh's Pivot Ignites Broad Sell-Off, SpaceX Suffers First Drop, Semiconductors Sole Safe Haven

marsbit11 min fa

NVIDIA Team Enables Programming Agent to Take Over Real Robot Experiments, Achieves 99% Success Rate

NVIDIA's ENPIRE project demonstrates fully automated robotic research where AI agents, given only high-level goals, autonomously manage the entire loop—from literature search and code development to training, deployment, and hardware iteration—on a fleet of physical robots. The system achieves 99% success rates on dexterous real-world tasks like cable tying and peg sorting. Key insights include the discovery of a "physical scaling law" where more parallel robots speed up task resolution, and the observation that resetting an environment is often easier than the main task. The framework introduces metrics like Mean Robot Utilization (MRU) to measure efficiency, with robots often idle half the time, waiting for agent decisions. The long-term vision is a lab that runs autonomously, even without human oversight. The project will be open-sourced, allowing developers to build similar systems.

marsbit48 min fa

NVIDIA Team Enables Programming Agent to Take Over Real Robot Experiments, Achieves 99% Success Rate

marsbit48 min fa

3B Small Model's Programming Scores Rival Opus 4.5, Mysterious Model Sparks Heated Discussion, Turns Out to be Domestic

A 3B parameter dense reasoning model named VibeThinker-3B has gained significant attention for achieving performance comparable to leading models like Gemini 3 Pro, GPT-5 high, and Claude Opus 4.5 in verifiable reasoning tasks such as programming, mathematics, and STEM problem-solving, despite its significantly smaller size. Developed by Sina Weibo's team, the model is built upon Qwen2.5-Coder-3B. Its training employs an upgraded Spectrum-to-Signal pipeline, featuring a curriculum-based two-stage supervised fine-tuning (SFT), multi-domain reinforcement learning (RL) inspired by MGPO, offline self-distillation, and instruction RL to enhance controllability. A key innovation is the Claim-Level Reliability (CLR) assessment, a test-time scaling strategy that further boosts performance on math benchmarks. The model excels in specific, verifiable domains, scoring highly on tests like AIME26 (94.3/97.1 with CLR) and LiveCodeBench v6 (80.2 Pass@1). However, it performs less impressively in areas requiring broad general knowledge. The authors propose a "parameter compression coverage hypothesis," suggesting that verifiable reasoning abilities—reliant on multi-step logic and feedback—are highly compressible, while open-domain knowledge depends more on large-scale parameters. VibeThinker-3B demonstrates that small models, when specialized for tasks with clear verification signals, can reach frontier performance, offering a complementary research path to scaling model size. The model is publicly available for download and testing.

marsbit1 h fa

3B Small Model's Programming Scores Rival Opus 4.5, Mysterious Model Sparks Heated Discussion, Turns Out to be Domestic

marsbit1 h fa

Sam Bankman-Fried Wants A New Token To Repay FTX Victims, But Could It Happen?

Sam Bankman-Fried (SBF) is reportedly expressing a personal hope for a new token project to repay FTX victims. However, this claim is heavily caveated by his legal reality. A US appeals court recently upheld his 25-year prison sentence, creating significant barriers to him launching any such project. The article frames these comments as subjective and not an active, credible plan. While the idea attracts attention due to FTX's massive collapse and the broader question of using tokens for restitution, the story emphasizes the legal and practical hurdles. The core narrative is the tension between SBF's reported personal aspiration and the established legal proceedings governing victim repayment.

bitcoinist8 h fa

Sam Bankman-Fried Wants A New Token To Repay FTX Victims, But Could It Happen?

bitcoinist8 h fa

BlackRock Launches Covered-Call Bitcoin ETF Under BITA Ticker

BlackRock has launched the iShares Bitcoin Premium Income ETF (ticker: BITA), a new bitcoin product that generates income using a covered-call options strategy linked to its iShares Bitcoin Trust (IBIT). Unlike a plain spot bitcoin ETF, BITA aims to provide monthly income by selling call options, offering investors a yield-focused alternative to direct bitcoin holdings or DeFi protocols. This strategy involves a trade-off: it can perform well in sideways markets by collecting premiums but may underperform pure spot bitcoin during strong rallies. The launch signals the evolution of the bitcoin ETF market beyond simple access products toward sophisticated strategies like income generation and hedging. BITA is targeted at investors and advisors who believe in bitcoin's long-term thesis but seek a smoother, income-oriented product within a traditional brokerage account. It is not a replacement for spot bitcoin exposure but rather a different tool that packages bitcoin's volatility into a strategy familiar to traditional markets. Understanding this trade-off is crucial for evaluating its performance, especially during major bitcoin price increases.

bitcoinist10 h fa

BlackRock Launches Covered-Call Bitcoin ETF Under BITA Ticker

bitcoinist10 h fa

Trading

Spot
Futures
活动图片