{"id":126316,"date":"2025-04-02T13:16:03","date_gmt":"2025-04-02T13:16:03","guid":{"rendered":"http:\/\/cryptospotters.net\/?p=126316"},"modified":"2025-04-02T13:16:03","modified_gmt":"2025-04-02T13:16:03","slug":"2b-lost-to-crypto-hacks-in-q1-2025-1-63b-from-access-control-flaws","status":"publish","type":"post","link":"http:\/\/cryptospotters.net\/?p=126316","title":{"rendered":"$2B lost to crypto hacks in Q1 2025, $1.63B from access control flaws"},"content":{"rendered":"<p>Source: Cointelegraph.com NewsOver $2 billion was lost to cryptocurrency hacks in the first quarter of 2025.<br \/>\nAccording to a report shared with Cointelegraph by crypto cybersecurity firm Hacken, in Q1 2025, nearly $1.63 billion was lost just to access control exploits. Anmol Jain, vice president of investigations at crypto forensics firm AMLBot, told Cointelegraph that the exceptionally high figure is mainly attributable to the recent hack of the crypto exchange Bybit.<br \/>\nThe data is similar to that recently shared by crypto cybersecurity firm PeckShield. The competing firm\u2019s report \u2014 which excludes scams \u2014 suggested that crypto hacks total at $1.6 billion in Q1 2025.<br \/>\nTotal 2025 Q1 crypto hack losses by category. Source: HackenLate February reports indicate that the North Korean hackers behind the $1.4 billion Bybit hack control over 11,000 cryptocurrency wallets used to launder stolen funds. The increasing participation of North Korean state actors highlights increasing sophistication and scale.<br \/>\nThis hack had a significant impact on this quarter\u2019s figures. This is particularly clear when one considers that the entirety of 2024 saw a total loss of $2.25 billion. Hacken shared a key lesson on the subject:<br \/>\n\u201cSecuring digital assets requires more than just secure on-chain code \u2014 the entire infrastructure, from front-end interfaces to internal processes, must be equally hardened, as all it takes is a single weak spot to wreck the entire system.\u201c<br \/>\nNo one is safe<br \/>\nHacken\u2019s report highlighted that the past few months saw \u201ceven the biggest centralized and decentralized players falling victim to operational failures, access control weaknesses, and in a few cases, social engineering.\u201d The quarter did not see any notable new exploits, \u201cbut rather the continued effectiveness of existing attack vectors.\u201d<br \/>\nThe report further highlights that, while smart contract vulnerabilities remain an issue, \u201cmost damage is now caused by failures in people, processes, or permission systems.\u201d This is also reportedly the third quarter in a row that has seen the top exploit be a multisignature wallet-related hack.<br \/>\nThe ByBit hackers compromised the Safe{Wallet} front end. Previous hacks involving multisignature wallet implementations or management include the Radiant Capital hack in Q4 2024 and the WazirX hack in Q3 2024.<br \/>\nThe crypto scam industry<br \/>\nScams also resulted in large-scale damage, with Hacken data attributing $96.37 million of losses to phishing scams and $300 million to rug pulls. Jain also highlighted a troubling trend in crypto scams becoming an industry:<br \/>\n\u201cThe most worrying trend is the professionalization of scam networks, where criminals operate with startup-like efficiency, including \u2018training programs\u2019 for scammers, internal quotas, and multi-stage laundering schemes using platforms like Huione Pay.\u201c<br \/>\nThe statement follows mid-January reports that Huione, often described as\u201d\u201cthe largest online illicit marketplace to have ever operated\u201d\u201d highlighted that the service has seen its monthly inflows increase by 51% in just half a year. This growth followed the platform&#8217;s deployment of its USD-pegged stablecoin and financial services dedicated to illegal activities.<br \/>\nAnmol highlighted that \u201cmost pig butchering scams originate from Southeast Asian cybercrime compounds,\u201d with many being located in Cambodia, Myanmar and Laos, with some presence in Thailand. The operators also often \u201cemploy\u201d human trafficked young people from India, Nepal, Vietnam, and the Philippines.<br \/>\nMagazine: China\u2019s \u2018point running\u2019 crypto scams, pig butchers kidnap kids: Asia Express<a href=\"https:\/\/cointelegraph.com\/news\/q1-2025-crypto-hacks-2b-lost?utm_source=rss_feed&amp;utm_medium=rss&amp;utm_campaign=rss_partner_inbound\" target=\"_blank\" class=\"feedzy-rss-link-icon\" rel=\"noopener\">Read More<\/a><\/p>","protected":false},"excerpt":{"rendered":"<p>Source: Cointelegraph.com NewsOver $2 billion was lost to cryptocurrency hacks in the first quarter of 2025. According to a report shared with Cointelegraph by crypto cybersecurity firm Hacken, in Q1&hellip; <\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[5],"tags":[],"_links":{"self":[{"href":"http:\/\/cryptospotters.net\/index.php?rest_route=\/wp\/v2\/posts\/126316"}],"collection":[{"href":"http:\/\/cryptospotters.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/cryptospotters.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"http:\/\/cryptospotters.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=126316"}],"version-history":[{"count":0,"href":"http:\/\/cryptospotters.net\/index.php?rest_route=\/wp\/v2\/posts\/126316\/revisions"}],"wp:attachment":[{"href":"http:\/\/cryptospotters.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=126316"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/cryptospotters.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=126316"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/cryptospotters.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=126316"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}