Theft Is Just the Beginning: The Slow Collapse Behind Cyber Attacks

比推Pubblicato 2026-03-23Pubblicato ultima volta 2026-03-23

Introduzione

The article "Theft Is Just the Beginning: The Slow Collapse Behind Hacker Attacks" discusses the long-term impacts of cryptocurrency hacks beyond the initial financial loss. Based on Immunefi’s "2026 On-Chain Security Report," the analysis reveals that while attacks themselves are swift, the aftermath unfolds over months, causing prolonged damage such as declining token prices, reduced funding, halted hiring, and delayed development. Key findings include: - The median direct loss per attack is around $25 million, but tokens experience a median drop of 61% within six months, with 16% recovering to pre-attack levels. - Although the number of attacks remains steady (94 in 2024, 97 in 2025), the concentration of losses is alarming: the top five attacks accounted for 62% of total stolen funds. - Centralized platforms, though fewer in attack frequency, represent over half of the financial losses, highlighting persistent vulnerabilities in trusted intermediaries. The report emphasizes that the true crisis begins after the theft—projects face extended recovery periods, reputational harm, and operational disruption, making survival particularly challenging for less-resourced teams. The interconnected nature of DeFi ecosystems further amplifies risks, as single incidents can trigger broader market repercussions. Ultimately, the article underscores that resilience is not just about preventing hacks but enduring their prolonged secondary effects.

Author: Andjela Radmilac

Compiled by: Saoirse, Foresight News

Original title: Under the Shadow of Hackers, More Than Just the Demise of Funds

Cryptocurrency exploits can drain a wallet in minutes, but the full extent of the losses often takes months to fully materialize. Token prices continue to fall, project treasuries shrink, hiring freezes, and even projects that survive the theft may completely lose their future in the subsequent turmoil.

Cryptocurrency hacks never end the moment the wallet is emptied. The theft is swift and direct, followed by a slower collapse that begins to spread within the project.

Tokens continue to decline, funding pools shrink accordingly, hiring plans are cut, product development is delayed, and partners withdraw one after another. Projects that should be focusing on recovery end up spending months rebuilding credibility instead of building.

This is precisely the scene depicted in Immunefi's latest "2026 On-Chain Security Status Report." Its core argument applies to any market—whether in the crypto industry or traditional sectors: the initial loss is only part of the damage.

The more serious issue lies in the devastating impact of the exploit on the project's future. Immunefi data shows that the average direct amount stolen per attack in their sample was approximately $25 million, while the median drop in stolen tokens within six months was as high as 61%. During this period, 84% of the tokens failed to return to their pre-attack prices, and project teams spent at least three months on post-incident recovery, delaying normal development.

However, this data comes with a caveat: token declines have multiple causes, and many projects were already vulnerable before the attack—suffering from poor liquidity, overvaluation, or having already lost momentum.

Immunefi acknowledges that they cannot completely separate the impact of hacks from broader market weakness or the projects' own issues. Even so, the patterns revealed in the report are still noteworthy: hacker attacks are no longer isolated theft events but more like a long-tail corporate crisis.

The value of this report lies in its proof that, after the热点 news fades, the后续 effects of hacker attacks continue to cause long-term harm.

Median Attack Losses Are Decreasing, but Extreme Attacks Are Becoming More Dangerous

According to Immunefi's statistics, 191 crypto attacks occurred in 2024-2025, with total losses of $4.67 billion; over five years, 425 attacks累计 occurred, with total losses reaching $11.9 billion.

The number of attacks per year has hardly changed: 94 in 2024, 97 in 2025, roughly flat with 2023. This indicates that the overall security of the market has not significantly improved. Hacker attacks have become the norm in the crypto industry, and a few giant attacks are enough to define the industry's risk for an entire year.

The report reveals a core contradiction:

The median loss from attacks in 2024-2025 was $2.2 million, lower than the $4.5 million in 2021-2023. On the surface, this seems like progress. However, the average loss was still about $24.5 million, more than 11 times the median; previously, this gap was only 6.8 times. The top five attacks accounted for 62% of all stolen funds; the top ten accounted for 73%.

This is an extremely dangerous distribution pattern: the market appears stable and safe until a giant event tears it apart. The scale of ordinary attacks has become smaller, but the real致命 risk lies in the tail—a few特大 incidents absorb the vast majority of losses and冲击 the entire market in a single day.

The most typical case is Bybit. The exchange's $1.5 billion exploit became the most iconic hack of 2025, with this single incident accounting for 44% of all funds stolen that year.

It's easy to view such events as news spectacles, but they expose a deeper problem of risk concentration: a single failure at a core platform is enough to distort the annual loss structure of the entire industry, revealing that huge risks are still piled up on a few critical nodes.

The Protracted Decline Is Where the Project Truly Begins to Collapse

The data on stolen funds in the report is certainly noteworthy, but the most alarming part is the section on price impact.

In Immunefi's sample of 82 hacked tokens:

Within two days of the hack, the median drop was about 10%, roughly flat with the previous cycle;
But the real冲击 emerged later: the median drop expanded to 61% after six months, higher than the 53% in 2021-2023.

Six months later:

56.5% of the hacked tokens had fallen more than 50%;
14.5% had fallen more than 90%;
Only about 16% of tokens returned to or exceeded their pre-attack price levels.

Chart shows the median token price decline for 82 hacked tokens in Immunefi's sample from 2024 and 2025 (Source: Immunefi)

To understand the full impact of a hack, we can no longer view token price as an isolated market indicator. For the vast majority of crypto projects, the token is the treasury, the foundation for fundraising, and the public report card of credibility. A prolonged暴跌 directly cripples the project's operational cycle, hiring ability, bargaining power in partnerships, and internal morale.

The report points out that projects that suffer attacks often lose their security lead within weeks and enter a recovery period of at least three months. Even if the timeline varies by project, the consequences are clear: projects with crashed tokens and damaged brands have almost no breathing room or chance for a turnaround.

Many markets can withstand a theft, a bad quarter, or even a reputation crisis. But the crypto industry often compresses all three into the same event: the attack empties the treasury → the token暴跌 publicly revalues the project → partners withdraw before the internal cleanup is even finished.

Recovery in this environment is extremely difficult, and致命 for teams that were not well-funded to begin with.

Interdependency makes the situation worse. Immunefi believes the DeFi ecosystem has become increasingly interconnected, forming longer, more fragile risk chains between cross-chain bridges, stablecoins, liquid staking, restaking, and lending markets.

Although some cases in the report require external verification, the overall trend is undeniable: today's crypto systems have more complex layers, meaning the impact of a single attack will extend far beyond the affected protocol itself.

Centralized platforms remain at the epicenter of explosions.

The report shows that out of the 191 attacks in 2024-2025, only 20 targeted centralized exchanges, but these 20 caused losses of $2.55 billion, accounting for 54.6% of the total losses.

This shifts the problem from smart contract vulnerabilities back to asset custody, key management, and over-concentrated infrastructure. For an industry that often sells itself on "decentralized risk resistance," most of the huge losses still occur on highly trusted, centralized nodes.

But this does not mean all hacked projects are doomed to fail. The industry has entered a new phase: a project's survival no longer depends on whether it can withstand an attack, but on whether it can withstand the six months *after* the attack.

Theft is just the beginning of the crisis. What truly determines whether a project has a future is the long, slow,持续的 secondary damage that follows the attack.

Twitter:https://twitter.com/BitpushNewsCN

Bitpush TG Discussion Group:https://t.me/BitPushCommunity

Bitpush TG Subscription: https://t.me/bitpush

Original link:https://www.bitpush.news/articles/7622471

Domande pertinenti

QWhat is the main finding of Immunefi's '2026 On-Chain Security Status Report' regarding the impact of crypto hacks?

AThe main finding is that the initial theft is only part of the damage; the more severe problem is the devastating impact on a project's future, including prolonged token price declines, drained treasuries, halted hiring, and delayed development, which can lead to a slow, long-term collapse.

QAccording to the report, what was the median percentage drop in the price of hacked tokens after six months?

AThe median percentage drop in the price of hacked tokens after six months was 61%.

QWhat does the report reveal about the distribution of losses from crypto hacks between 2024 and 2025?

AThe report reveals a highly dangerous distribution: while the median attack loss decreased, the average loss was high, and a small number of extreme attacks accounted for the majority of the losses. The top 5 attacks represented 62% of all stolen funds, and the top 10 represented 73%.

QWhich type of platform was responsible for the majority of the financial losses from hacks in 2024-2025, despite having fewer incidents?

ACentralized exchanges were responsible for the majority of financial losses. Although only 20 attacks targeted CEXs, they resulted in losses of $2.55 billion, accounting for 54.6% of the total losses during that period.

QWhat key factor does the report suggest ultimately determines whether a project can survive a hack?

AThe report suggests that a project's survival is no longer determined by its ability to withstand the initial attack, but rather by its ability to withstand the subsequent six months of slow, prolonged secondary damage, including price collapse and reputational harm.

Letture associate

Amazon Invests Additional $25 Billion in Anthropic, AI Infrastructure 'Arms Race' Escalates

Amazon announces an additional investment of up to $25 billion in Anthropic, with $5 billion delivered immediately and the remaining contingent on performance milestones. This follows a recent $50 billion investment in OpenAI, highlighting Amazon's strategy of backing leading AI labs. The deal includes a commitment from Anthropic to spend over $100 billion on AWS infrastructure over the next decade, securing up to 5 gigawatts of computing power to address growing demand and capacity constraints. Anthropic’s annualized revenue has surpassed $30 billion, but the company faces infrastructure strain due to rapid user growth. The investment will support scaling Claude’s capabilities using Amazon’s custom Trainium and Graviton chips. The move deepens integration between Anthropic and AWS, allowing Claude to be accessed natively within AWS services. Over 100,000 organizations already use Claude via Amazon Bedrock. This investment is part of a broader AI infrastructure race, with Amazon planning around $200 billion in capital expenditures this year, largely focused on expanding AI compute capacity.

marsbit17 min fa

Amazon Invests Additional $25 Billion in Anthropic, AI Infrastructure 'Arms Race' Escalates

marsbit17 min fa

A New CEO Who Has Worked Exclusively with Hardware for 25 Years Takes Over Apple, Valued at 4 Trillion

Apple, the world's most valuable tech firm, has appointed John Ternus as its new CEO, effective September 1, replacing Tim Cook who transitions to executive chairman. Ternus, a 51-year-old mechanical engineer with 25-year tenure at Apple, previously served as senior vice president of hardware engineering. Known for his low public profile and lack of social media presence, he played key roles in developing products like the iPad, AirPods, and led Apple’s transition from Intel to in-house silicon chips. Ternus takes over a company valued at $4 trillion, with Cook having multiplied Apple’s revenue and built a $100 billion services business. However, he inherits significant challenges: Apple’s AI efforts, including the delayed Siri revamp powered by Google’s Gemini, remain unproven, and the company is preparing to launch its first foldable iPhone amid supply constraints. While Ternus’s hardware expertise positions him well for product-driven innovation, his lack of software/AI experience raises questions about Apple’s competitiveness in the AI era. The company’s structure has been adjusted to support him, with Cook remaining in an advisory role. Ternus’s engineer-led approach—emphasizing humility and collaboration—may prove vital in navigating Apple’s next chapter.

marsbit17 min fa

A New CEO Who Has Worked Exclusively with Hardware for 25 Years Takes Over Apple, Valued at 4 Trillion

marsbit17 min fa

Atkins' First Year at the Helm of the SEC: A Comprehensive Shift in Crypto Regulation

Paul Atkins marked his one-year anniversary as Chair of the U.S. Securities and Exchange Commission (SEC) on April 21, 2025, overseeing a significant shift in the agency’s approach to cryptocurrency regulation. Under his leadership, the SEC dropped multiple enforcement actions against crypto firms, approved several crypto-linked ETFs, and issued guidance clarifying that most cryptocurrencies are not considered securities under federal law. The SEC also signed a memorandum with the CFTC to improve regulatory coordination. These actions reversed the aggressive enforcement stance of his predecessor, Gary Gensler, and aligned with Trump administration promises to support the crypto industry. However, Atkins has faced criticism from Democratic lawmakers, including Senator Elizabeth Warren, who raised concerns over potential conflicts of interest, particularly regarding dropped cases linked to Trump-affiliated companies. While regulatory clarity has improved, the SEC still awaits congressional action to formally define its jurisdiction over digital assets.

marsbit27 min fa

Atkins' First Year at the Helm of the SEC: A Comprehensive Shift in Crypto Regulation

marsbit27 min fa

a16z: 5 Ways Blockchain Can Help AI Agent Infrastructure

Blockchain technology provides critical infrastructure for AI agents by addressing five key challenges: 1) Non-human identity: AI agents lack standardized, portable identity systems. Blockchain enables verifiable, cross-platform agent identities (like "Know Your Agent" frameworks) through cryptographic credentials and on-chain registries. 2) AI governance: When AI systems execute decisions, blockchain ensures transparency and prevents centralized control by recording actions on-chain and enabling auditable execution logs. 3) Payments: Stablecoins and crypto payments (e.g., x402, MPP) serve as default settlement layers for agent-to-agent commerce, enabling frictionless, programmable transactions for "headless" AI-native businesses. 4) Trust and verification: As AI scales, blockchain provides cryptographic proof of origin and auditable histories, making verification—not intelligence—the scarce resource. 5) User control: Crypto-native tools (e.g., delegation toolkits, intent-based architectures) allow users to set boundaries and maintain oversight over autonomous agents, minimizing blind trust. Together, blockchain and AI can create an economic infrastructure built on transparency, accountability, and user sovereignty.

marsbit1 h fa

a16z: 5 Ways Blockchain Can Help AI Agent Infrastructure

marsbit1 h fa

You Bet on the News, the Pros Read the Rules: The True Cognitive Gap in Losing Money on Polymarket

The article explains that the key to profiting on Polymarket, a prediction market platform, lies not just predicting real-world events correctly, but in meticulously understanding the specific rules that govern how each market will be resolved. It illustrates this with examples, such as a market on Venezuela's 2026 leader, where the official rules defining "officially holds" the office overruled the intuitive answer of who was in practical control. Other examples include debates over the definition of a "token" or what constitutes an "agreement." The core argument is that a "reality vs. rules" gap creates pricing discrepancies that savvy traders ("车头" or "whales") exploit. The platform has a formal dispute resolution process managed by UMA token holders to settle ambiguous outcomes. This process involves proposal submission, a challenge window, a discussion period, and a final vote. However, the article highlights a critical flaw in this system compared to a traditional court: the lack of separation between the arbiters (UMA voters) and the interested parties (traders with financial stakes in the outcome). This conflict of interest undermines the discussion phase, leads to herd mentality, and results in opaque final decisions without explanatory rulings. Consequently, the system lacks a body of precedent, making it difficult for users to learn from past disputes. The ultimate takeaway is that success on Polymarket requires a lawyer-like scrutiny of the rules to identify and capitalize on the cognitive gap between how events appear and how they are contractually defined for settlement.

marsbit1 h fa

You Bet on the News, the Pros Read the Rules: The True Cognitive Gap in Losing Money on Polymarket

marsbit1 h fa

Trading

Spot

Futures