Private EXPLOITY and front-end compromises were the majority of cryptocurrencies worth $ 2.1 billion lost on attacks in the first half of 2025, says TRM Labs from Blockchain Intelligence.
Over 80% of cryptography stolen on 75 hacks this year was taken in the so -called exploit infrastructure, which on average performed 10 times more than other types of attacks, TRM Labs he said In the report from Thursday.
Infrastructure attacks are focused on the technical backbone of the system to obtain unauthorized control, mislead users or redirect assets.
They include attacks such as kidnapping the private phrase of the cryptographic portfolio or the exploit of a part of the cryptographic protocol by the user.
“These methods use fundamental weaknesses in cryptosystems and are often strengthened by social engineering.”
The exploit of the protocol helps to raise illegal cryptographic activity
Another great successful attack vector was the exploit of the protocol, including Flash attacks and re -introduction, which constituted 12% of losses in the first half of the year.
“These attacks are focused on gaps in intelligent contracts or logic of the basic blockchain protocol to separate funds or disruption of system behavior,” explained TRM Labs.
In general, the losses in the first half of 2025 exceeded the previous record set in 2022 by about 10% and almost equal total losses compared to all 2024, which TRM Labs said that “emphasizes an increasingly concentrated threat to digital assets.”
The states sponsored by the state responsible for most of the losses
Hack Crypto Exchange in North Korea in North Korea in February in February accounts for almost 70% of total losses in 2025.
This attack also increased the average Hack size to almost $ 30 million, a double average of $ 15 million in the first half of 2024.
However, according to TRM Labs, January, April, May and June they still recorded a total theft of over $ 100 million.
Gonjeshke Darande, a pro-Israel group of hackers, i.e. a predatory sparrow-which has possible connections with the Israeli government-also closed to lifting medium, after she used the largest cryptographic exchange in Iran, Nobitex, for $ 100 on June 18.
Related: Crypto haches the highest USD 1.6 billion in the first quarter of 2025 – Peckkshield
“H1 2025 means a key change in cryptographic hacking: escalation of strategic intentions of state entities and other geopolitically motivated groups,” said TRM Labs.
“Multi -faceted cooperation” needed to fight bad actors
TRM Labs said that the cryptographic industry must strengthen fundamental security, such as multifactorial authentication, cool store storage, recurrent audits and priorities regarding threat detection and advanced means of social engineering.
He added that there must be “multi -faceted cooperation” between global law enforcement agencies, financial intelligence units and Blockchain intelligence companies.
“Recording thefts of H1 2025 are a clear call to act for a collective, permanent and strategically even position of security – one prepared not only for crime, but for secret acts of the shipfalt,” said TRM Labs.
Warehouse: Coinbase Hack shows that the law probably will not protect you: Here’s why
