Poor actors managed to survive around $ 2.1 billion in crypto over 75 incidents in the first half of 2025.
By one report Blockchain ininimination company TRM Labs resulted in most of these losses from infrastructure attacks that were aimed at the technical backbone of crypto systems.
Sucking Exploits include private key theft, seed-frown compromises and front-end Kaps and were good for more than 80% of all stolen funds. On average, such attacks delivered 10 times more value than other methods.
TRM Labs noted that the biggest incident so far this year was the $ 1.5 billion infringement of the Crypto exchange-exchange bybit established in Dubai in February. Attributed to North Korean hackers, the hack accounted for almost 70% of the total losses of the year. It crooked the total figures considerably crooked and pushed the average hack size to $ 30 million, doubles the average from the same period in 2024.
Other remarkable attacks were the exploit of 18 June of the largest crypto exchange of Iran, Nobitex, by Hackergroep Gonjeshke Darande, also known as predatory Sparrow. The hackers have stolen more than $ 90 million and transferred the funds to non -cutting vanity addresses.
Crypto attacks sponsored by the government are now good for the majority of global losses, said TRM Labs, with geopolitical motives that are increasingly stimulating illegal activities.
“Although North Korea remains the dominant power in this arena, incidents such as allegedly Israel-linked group Gonjeshke Darande Darande who have the greatest crypto exchange of Iran Hackt, Nobitex […] Suggesting that other state actors can increasingly use crypto -hacks for geopolitical goals, “said TRM researchers.
“Such events underline how theft of digital assets becomes a secret instrument in geopolitical conflicts and national policy.”
In addition to hacks, exploits at the protocol level accounted for 12% of the losses during the period, according to the report. These include flash loans and reenting attacks that were aimed at vulnerabilities in smart contracts or protocollogic, so that attackers could manipulate funds or remove decentralized financial protocols.
According to TRM Labs, the $ 2.1 billion stolen in the first six months of 2025 represents an increase of approximately 10% compared to the previous H1 record set in 2022 and almost corresponds to the total losses that have been registered for the entire year of 2024.
In response to these threats, TRM Labs urged the industry to take stronger security measures, such as the use of multi-factor authentication, storing funds in cold portfolios, regular execution of security audits and implementing counter-measures against insider threats and social engineering.
Crypto -hacks have remained a consistent threat to industry over the years. As previously reported by crypto.news, more than $ 1.63 billion in crypto losses were stolen over more than 60 attacks in the first quarter of 2025, according to reports from Immunefi and Peckshield.
Centralized exchanges wore the victims, good for 94% of the total losses, largely as a result of the incidents of the Bybit and Phemex, which together expressed $ 1.52 billion of the total.