The crypto industry is facing increasing threats as hackers and scammers continue to target digital assets. Despite improvements in security measures, vulnerabilities remain, which leaves platforms and users at risk.
September 2025 turned out to be one of the most damaging months this year. Here’s how.
Crypto security firm CertiK reported that in September, about $155.9 million was lost to exploits, with $26.4 million tied to phishing. There were 14 major crypto incidents (excluding phishing), each causing initial losses of over $1 million, the highest number of such incidents since March 2024.
Looking at categories, wallet compromises caused the most losses with $100.8 million stolen. Phishing accounted for $26.4 million, code vulnerabilities led to $12.2 million, exit scams made up $8.2 million, and price manipulation resulted in over $2 million in losses.
Breaking it down by platform, SocialFi projects suffered the most at $42.3 million. Exchanges followed closely with $41.6 million, while DeFi protocols lost $29.1 million. AI-related projects and bridge exploits were also hit, with $5.7 million and $3.08 million in losses respectively.
The biggest exploit in September came from UXLINK, with losses exceeding $42.3 million, closely followed by SwissBorg at $41.4 million.
Other notable incidents included:
In September, phishing scams accounted for $26.4 million in losses, down from the higher amounts reported in August and the peak in April.
CertiK had previously said that the crypto industry faces an “endless war” against hackers, reporting nearly $2.5 billion in digital asset thefts in the first half of 2025.
CertiK co-founder Ronghui Gu noted that as long as there are weak points or vulnerabilities, sooner or later they will be discovered by attackers. He also warned that next year’s hacks could reach billion-dollar levels, emphasizing that while defenses are improving, cybercriminals are also becoming more sophisticated.
CoinPedia has been delivering accurate and timely cryptocurrency and blockchain updates since 2017. All content is created by our expert panel of analysts and journalists, following strict Editorial Guidelines based on E-E-A-T (Experience, Expertise, Authoritativeness, Trustworthiness). Every article is fact-checked against reputable sources to ensure accuracy, transparency, and reliability. Our review policy guarantees unbiased evaluations when recommending exchanges, platforms, or tools. We strive to provide timely updates about everything crypto & blockchain, right from startups to industry majors.
All opinions and insights shared represent the author's own views on current market conditions. Please do your own research before making investment decisions. Neither the writer nor the publication assumes responsibility for your financial choices.
Sponsored content and affiliate links may appear on our site. Advertisements are marked clearly, and our editorial content remains entirely independent from our ad partners.
Bybit, one of the world’s largest crypto exchanges, will start phasing out services for Japanese…
Bitcoin’s price action in Q4 2025 has looked very different from previous years. After starting…
Two crypto wallets lost a total of $2.3 million in USDT in a rapid on-chain…
Blockchain security company CertiK has issued an important warning after detecting a suspicious on-chain incident…
Bybit is preparing to leave Japan. One of the world’s largest crypto exchanges has confirmed…
Bitcoin is back in focus as veteran trader Peter Brandt raises fresh concerns about where…
