According to PANews, Web3 cybersecurity firm CertiK has reported a shift in cryptocurrency hacking strategies, with attackers moving away from exploiting smart contract vulnerabilities to employing social engineering techniques. As of 2025, losses from cryptocurrency-related attacks have surpassed $2.1 billion, primarily due to wallet thefts and phishing attacks.
CertiK co-founder Ronghui Gu highlighted that the attack patterns have transitioned from code vulnerabilities to exploiting human behavior vulnerabilities. The majority of the $2.1 billion losses are attributed to wallet thefts, poor key management, and operational issues. Gu emphasized the need for the industry to invest in enhanced wallet security, access control, real-time transaction monitoring, and simulation tools to mitigate future incidents.