Foresight News reports that the Web3 security company CertiK has released the (2025 Skynet RWA Security Report), stating that the threat landscape for real-world assets (RWA) has undergone significant changes over the past two years. In the first half of 2025, losses from RWA-related security incidents reached as high as $14.6 million, compared to only $6 million in 2024. More notably, the sources of risk have fundamentally changed: the main threats in 2023 and 2024 came from off-chain credit defaults, such as borrowers failing to meet obligations; whereas in 2025, almost all losses stemmed from on-chain and operational vulnerabilities.
CertiK points out that this trend indicates that the core challenges of RWA security are shifting from traditional financial risks to technology and operational security. Even if the underlying assets are genuine and reliable, vulnerabilities in on-chain contracts and operational infrastructure can be sufficient to undermine the stability of the system. The report calls for market participants to invest more resources in on-chain protection and operational security practices beyond traditional financial compliance to address the new wave of risk landscape.