The latest report from blockchain security company CertiK shows that losses due to cryptocurrency-related hacking attacks, exploits, and scams surged to $2.47 billion in the first half of 2025, although the total number of hacking incidents decreased in the second quarter.
According to data released by CertiK on Tuesday, there were 144 security incidents in the second quarter, resulting in losses exceeding $800 million, a 52% decrease from the previous quarter, with 59 fewer incidents.
In the first half of 2025, total losses caused by hackers, scams, and exploits have exceeded $2.47 billion, representing an almost 3% year-on-year increase compared to the $2.4 billion stolen in 2024.
However, considering the over $187 million recovered in the first six months of this year, CertiK noted that the adjusted total loss is approximately $2.2 billion.
CertiK pointed out that despite the significant increase in losses, this does not mean that the overall security environment has worsened, as the vast majority of the financial losses were concentrated in two major security incidents involving Bybit and Cetus Protocol, totaling as much as $1.78 billion.
Specifically, on February 21, attackers exploited vulnerabilities in the cold wallet infrastructure of cryptocurrency exchange Bybit, stealing $1.5 billion worth of Ethereum (ETH); on May 22, the decentralized exchange Cetus Protocol, based on the Sui blockchain, was attacked, resulting in a loss of $225 million.
CertiK stated, "Excluding the aforementioned two incidents, the total loss for the first half of 2025 is $690 million, indicating that the overall trend may not be as severe as the surface numbers suggest."
Phishing attacks accounted for the highest number of security incidents this year, with a total of 132 incidents recorded, causing losses of $410 million.
Overall, wallet breaches were the most severe attack method in the first half of 2025, with 34 incidents resulting in $1.7 billion stolen.
CertiK reminded, "As phishing techniques become increasingly covert, users must enhance their security awareness: avoid clicking on suspicious links, verify the authenticity of domain names, enable multi-factor authentication, and consider using hardware wallets to store private keys."
The Ethereum blockchain has become one of the primary targets for attackers, with 70 hacking, scam, and exploit incidents occurring in the first half of the year, although this is a decrease from 98 incidents in the first quarter.
In its first-quarter security report, CertiK noted, "Ethereum's dominant position in the decentralized finance and smart contract ecosystem makes it an attractive target for attacks, with protocols locking up billions of dollars."
In addition to security incidents, CertiK stated that the first half of 2025 also witnessed significant global regulatory and market developments, which are likely to "shape the future of the industry."
In the United States, President Donald Trump has pushed for reforms at the Securities and Exchange Commission, which has withdrawn several enforcement actions against cryptocurrency companies and introduced other legislation supporting cryptocurrencies.
Meanwhile, the Hong Kong Legislative Council passed a stablecoin bill, laying the groundwork for a regulatory framework; the EU's Markets in Crypto-Assets (MiCA) regulatory framework officially came into effect on December 30.
CertiK noted, "These developments collectively indicate a growing institutional interest and the ongoing maturation of the regulatory environment."
The company added, "As new capital and new participants continue to emerge, maintaining strict security standards will be more important than ever."
Related: FATF's cryptocurrency list hints at the next round of regulatory crackdowns
免责声明:本文章仅代表作者个人观点,不代表本平台的立场和观点。本文章仅供信息分享,不构成对任何人的任何投资建议。用户与作者之间的任何争议,与本平台无关。如网页中刊载的文章或图片涉及侵权,请提供相关的权利证明和身份证明发送邮件到support@aicoin.com,本平台相关工作人员将会进行核查。
