Complete monetary losses from cryptocurrency-related crime elevated by 33 per cent during the last 12 months to succeed in $3.6billion, even because the variety of recorded incidents fell by 44 per cent. The findings come from the ‘2025 Crypto Hacks and Scams Report’ revealed by blockchain intelligence agency Crystal Intelligence.
The report, which analyses over 1,000 confirmed incidents of hacks, fraud, and decentralised finance (DeFi) breaches since June 2011, supplies an in depth overview of digital asset crime developments. It’s meant to help compliance groups, regulation enforcement and regulators in understanding the evolving threat outlook. The whole worth stolen since 2011 now stands at over $22.7billion.
Fewer incidents, greater losses
Overlaying the interval from 1 April 2024 to 31 March 2025, the report recognized a pattern of declining incident quantity alongside rising monetary losses. A complete of 184 incidents had been recorded throughout this era. The rise within the whole worth stolen was largely attributed to a small variety of high-value thefts.
Essentially the most vital occasion was the $1.5billion exploit of crypto trade Bybit in February 2025, which the report identifies as the biggest single crypto theft ever recorded. In line with the evaluation, attackers exploited a JavaScript poisoning vulnerability inside Bybit’s protected interface to hijack the multisignature approval course of.
Breakdown by assault kind
The report categorises the incidents into three major varieties. Safety breaches accounted for the biggest share of economic losses, with 56 incidents leading to $2.5 billion stolen, practically 70 per cent of the annual whole.
DeFi breaches noticed a decline in each frequency and worth, with 75 incidents totalling $372.8million in losses, down from $577.5million within the earlier 12 months. Fraud incidents, together with funding scams and handle manipulation schemes, additionally dropped to 53 instances. Nonetheless, the overall monetary loss from fraud remained vital at $716million.
Different main incidents detailed within the report embody the July 2024 assault on Indian trade WazirX, which resulted in a $230million loss from its multisig pockets infrastructure, and a memecoin rug pull in Argentina that prompted $250million in losses.
Ethereum stays the first goal
Ethereum continued to be essentially the most focused blockchain, concerned in 98 incidents and accounting for $2billion in losses during the last 12 months. The report notes that Ethereum was central to the biggest thefts and frauds, and was concerned in practically all mixer-based laundering exercise.
The report concludes with a collection of suggestions for monetary crime investigators and compliance professionals. These embody enhanced monitoring of pockets behaviour to flag laundering makes an attempt, elevated consciousness of interface-level manipulation techniques, and a name for larger business collaboration in responding to large-scale incidents in real-time.
