Advertise
Qadir AK
Qadir AK
Author
Qadir Ak is the founder of Coinpedia. He has over a decade of experience writing about technology and has been covering the blockchain and cryptocurrency space since 2010. He has also interviewed a few prominent experts within the cryptocurrency space.
- Jan 04, 2025 10:47 UTC
-
Ethereum Under Fire! $152 Million Lost in 2024 Crypto Phishing Attacks
Web3 phishing attacks surged in 2024, reaching $494 million in losses, a 67% increase from the previous year.
Ethereum was the primary target, with $152 million lost across 25 significant attacks.
The second and third quarters witnessed the highest losses, with August ($55.48 million) and September ($32.51 million) accounting for the most.
In 2024, the Web3 space faced an unrelenting wave of phishing attacks, leading to a staggering $494 million in losses. According to Scam Snifferโs 2024 phishing report, this marks a 67% increase compared to the previous year. Wallet drainer malware is becoming increasingly complex, opening up new risks for users in the decentralized world.
While the number of victims only grew by 3.7%, the cost per attack has sharply increased. The yearโs largest single loss, $55.48 million, showing the growing threat and the serious financial risks involved.
Ethereum bore the brunt of the attacks, with 25 major incidents resulting in $152 million in losses. Other blockchains, including Arbitrum, Blast, Base, and BNB Chain, were also targeted, but none faced the same scale of exploitation as Ethereum.
The Timeline of Attacks
The first quarter of 2024 saw the highest losses, totaling $187.2 million and impacting 175,000 victims. March was particularly devastating, with $75.2 million stolen, partly due to the increased on-chain activity driven by the rising Bitcoin price.
Phishing attacks reached their peak in the second and third quarters of 2024. In August, $55.48 million was lost, and in September, the figure stood at $32.51 million. These two months contributed to over half of the yearโs total large-scale losses.
In the last quarter of the year, losses fell to $51 million, thanks to stronger security measures and growing awareness among users and projects about phishing risks.
Wallet Drainer Tactics Evolve
The wallet drainer strategies, in particular, changed a great deal in 2024. This also resulted in large nets like Pinkย disappearingย in the second quarter of the year, enabling Inferno to take over 45% market share come year-end.ย
Attackers also learned new tricks to work around defences; using wallet normalization processes and exploiting other full access signature permissions. It was often seen that phishing signatures like โPermitโ and โsetOwnerโ were used to perform other concentrated cyber thefts, the largest of which caused the loss of $55 Million USD in DAI.
Any Hope Ahead?
Despite the difficulties of 2024, the year has also highlighted the potential for improved security technologies. With better security practices and more awareness, there is hope for a safer future in Web3. Developers, security analysts, and users will need to collaborate to stay ahead of evolving threats and protect decentralized finance.
Yes 
No 
