News View Non-AMP

Crypto Hacks in H1 2025 Exceed $2.2B

Published by
Elena R and Zafar Naik

The crypto industry lost over $2.2 billion in the first half of 2025 due to hacks, scams, and security breaches, surpassing the total losses of 2024, according to CertiK’s H1 2025 “Hack3d” Web3 Security Report.

CertiK recorded 344 on-chain incidents between January and June. Wallet breaches accounted for $1.7 billion in just 34 cases, while phishing scams caused $410 million across 132 incidents.

The largest exploit occurred in February when Bybit lost $1.5 billion in a wallet breach involving staked ETH. In May, Cetus Protocol was exploited for $225 million via a smart contract bug, although $162 million was later recovered by Sui validators.

Ethereum Targeted Most; Code Bugs Surge

Ethereum was the most attacked blockchain, with 175 incidents leading to $1.6 billion in losses. Smart contract vulnerabilities alone caused $229 million in May, up sharply from just $5 million in April.

CertiK also flagged an increase in physical attacks, with 32 cases involving violence, kidnappings, and ransom attempts. France saw the most incidents, including an attempted kidnapping involving the family of Paymium’s CEO.

Funds Recovered, But Risks Mount

Approximately $187 million was recovered through whitehat efforts, law enforcement, and exchange cooperation. However, with attacks becoming more complex and violent, stronger security practices are urgently needed.

A key vulnerability remains poor private key management. Keys are often stored insecurely, unencrypted, or controlled by one person, making them easy targets for hackers. This single point of failure has contributed to billions in losses and remains one of the crypto industry’s biggest risks.

FAQs

What are the biggest crypto hacks of 2025 so far?

Major 2025 hacks include $400M from Coinbase, $220M from Cetus, and millions more from BSC, Phemex, and UPCX exploits.

How can I protect my crypto wallet from phishing attacks?

Avoid unverified contracts, never share keys, and regularly review approvals to secure your wallet from phishing.

How can I identify and avoid common crypto phishing scams and fraudulent websites?

Beware of unsolicited emails, messages, or social media offers promising unrealistic returns or free crypto. Always double-check URLs for misspellings, verify sender domains, and never click suspicious links. Legitimate platforms will never ask for your private keys or seed phrases.

Elena R and Zafar Naik

Elena is an expert in technical analysis and risk management in cryptocurrency market. She has 10+year experience in writing - accordingly she is avid journalists with a passion towards researching new insights coming into crypto erena.

Recent Posts

Bitwise CIO: Bitcoin Should Be $200K Already By now, But!

Bitcoin has been struggling to break past the $112,000 mark, leaving many investors frustrated. But…

September 6, 2025

“Gold Price Could Reach $5,000, While Bitcoin Stays Stuck” Says Peter Schiff

Global markets ended the week with mixed signals after U.S. labor figures showed a sharp…

September 6, 2025

Arkham Identifies $5B in BTC Not Seized by the German Government from Movie2k

The German government could soon have a new chance to re-enter the Bitcoin (BTC) market.…

September 6, 2025

SOL Strategies Debuts in U.S. Market Via Planned Nasdaq Listing on September 9

SOL Strategies, a Canadian-based publicly traded company that is focused on accumulating Solana coins, has…

September 6, 2025

SEC Chair Paul Atkins Unveils Cross-Border Task Force to Combat Fraud

The chairman of the United States Securities and Exchange Commission (SEC) Paul Atkins, announced the…

September 6, 2025

Dogecoin And Shiba Inu Show Tired Price Action, While Layer Brett Gains Strong Community Support

Is the old guard of meme coins finally showing its age? As Bitcoin hovers, the…

September 5, 2025