BTC $117,799.02 1.37%
ETH $2,986.46 0.36%
SOL $163.22 0.00%
PEPE $0.000012 4.56%
SHIB $0.000013 4.04%
DOGE $0.20 8.33%
XRP $2.79 9.32%
ETH Gas (gwei) 3.18
Cryptonews Blockchain News

H1 2025 ‘Marks a Pivotal Shift in Crypto Hacking’ – TRM Labs Report

Hack Security TRM Labs
“Infrastructure attacks — such as private key and seed phrase thefts, and front-end compromises — accounted for over 80% of stolen funds in H1 2025,” the TRM report says.
Journalist
Sead Fadilpašić
Journalist
Sead Fadilpašić
About Author

Sead specializes in writing factual and informative articles to help the public navigate the ever-changing world of crypto. He has extensive experience in the blockchain industry, where he has served...

Author Profile
Last updated: 
Why Trust Cryptonews
Cryptonews has covered the cryptocurrency industry topics since 2017, aiming to provide informative insights to our readers. Our journalists and analysts have extensive experience in market analysis and blockchain technologies. We strive to maintain high editorial standards, focusing on factual accuracy and balanced reporting across all areas - from cryptocurrencies and blockchain projects to industry events, products, and technological developments. Our ongoing presence in the industry reflects our commitment to delivering relevant information in the evolving world of digital assets. Read more about Cryptonews
Crypto Hacking, TRM Labs

“The first half of 2025 has delivered a stark reminder of the crypto ecosystem’s vulnerabilities,” according to the latest report by blockchain intelligence platform TRM Labs. It has surpassed the previous H1 crypto hacking record from 2022.

To be precise, the first half of this year lost more than $2.1 billion across at least 75 distinct hacks and exploits, TRM says. This is “a significant surge in illicit activity,” it warned. It is some 10% higher than the H1 2022 high. Moreover, it’s nearly equal to the total stolen amount over the entire year of 2024.

Therefore, this data “highlights an increasingly concentrated threat to digital assets.”

Source: TRM Labs

Furthermore, two factors fueled this amount: infrastructure attacks and state-sponsored activity. Notably, the infamous Bybit attack alone accounted for nearly 70% of the above total. Therefore, February saw the biggest hack in the history of crypto, with $1.46 billion gone.

Moreover, because of this one hack, the average hack size grew to nearly $30 million. This is double the USD 15 million average in the first quarter of 2024.

The report notes that the Bybit hack “massively skewed” the H1 2025 total, but that January, April, May, and June saw total thefts in excess of $100 million. This suggests “a broad, persistent threat.”

Therefore, based on these findings, “H1 2025 marks a pivotal shift in crypto hacking: escalating strategic intent from state actors and other geopolitically motivated groups,” TRM Labs says. “Massive breaches, often linked to nation-state operations, now demand more than traditional cybersecurity.”

You may also like:
Ex-Employee Hacks Bedrock UniBTC for $2M: Fuzzland Uncovers Insider Exploit
Fuzzland has disclosed a $2 million insider attack that targeted Bedrock’s UniBTC protocol in September 2024, was carried out by a former employee who used malware, social engineering, and privileged access to compromise internal systems. Fuzzland has taken full responsibility for the breach and reimbursed all affected parties. Insider Access Used in $2M Bedrock Protocol Exploit Fuzzland, in a post on X, revealed that a past employee exploited the UniBTC protocol via a sophisticated...

Infrastructure Attacks Dominated the Crypto Hacking Landscape

The report notes that infrastructure attacks – which seek to gain unauthorized control, mislead users, or reroute assets, and are often boosted by social engineering or insider access – accounted for over 80% of stolen funds in H1 2025.

These include private key and seed phrase thefts, as well as front-end compromises. Moreover, infrastructure attacks were, on average, ten times larger than other attack types.

Next, protocol exploits, including flash loan and reentrancy attacks, accounted for 12%. These attacks target vulnerabilities in a blockchain’s smart contracts or core logic to steal funds or disrupt system behavior. They also show “persistent vulnerabilities in DeFi smart contracts.”

Meanwhile, the analysts also highlighted “the persistent and alarming role of state-sponsored crypto attacks.” Some of the most dangerous are North Korea-linked groups, such as the notorious Lazarus, which were also behind the Bybit incident.

These groups are responsible for $1.6 billion, or some 70%, of the total stolen amount in H1 2025. TRM Labs describes them as “the most prolific nation-state threat actor in the crypto space.” North Korea is leveraging illicit crypto gains not only to evade sanctions, but also “as an integral component of its statecraft.”

However, there are other significant threats, such as the Israel-linked group Gonjeshke Darande (aka Predatory Sparrow). This one hacked Iran’s largest crypto exchange, Nobitex, on 18 June, stealing $90 million. Not only that, but the group released the platform’s full source code, exposing users to further risk.

This attack suggests “other state actors may increasingly leverage crypto hacks for geopolitical ends,” TRM Labs says. The attackers transferred stolen funds to deliberately unspendable vanity addresses, suggesting political motives.

“As digital assets increasingly intertwine with national security, so too will the sophistication and geopolitical motives of their exploiters,” the report warns.

TRM concludes that “the path forward requires multifaceted collaboration.” This includes better cooperation among global law enforcement, financial intelligence units, and specialized blockchain intelligence firms.

You may also like:
CoinMarketCap Hacked, Scrambles to Remove Malicious Wallet Verification Popup
CoinMarketCap was hacked on Friday after a malicious popup appeared on its website, urging users to "verify" their wallets. The phishing-style notification asked users to connect their wallets and approve ERC-20 token access, raising immediate red flags across the crypto community. Wallet providers like MetaMask and Phantom quickly flagged the site as unsafe, with Phantom displaying a browser warning against using the platform. CoinMarketCap Removes Malicious Popup In a Friday...

Bitcoin News
Why Is Crypto Up Today? – July 11, 2025
2025-07-11 11:35:22
,
by Sead Fadilpašić
Press Releases
ChatGPT Predicts the Price of XRP, Solana and Pi Coin by the End of 2025
Price Analysis
XRP Price Prediction: Analyst Spots 2017 Setup on XRP Chart – New All-Time High Could Be Days Away
2025-07-09 16:39:09
,
by Simon Chandler
Best Crypto to Buy Now in July 2025 – Top Crypto to Invest In
2025-07-09 14:31:51
,
by Alan Draper
Best New Cryptocurrencies to Invest In July 11, 2025
2025-07-11 16:13:09
,
by Ines S. Tavares
13 Best Crypto Presales to Invest In 2025 – Presale Crypto List
2025-07-11 12:49:31
,
by Alan Draper
11 New & Upcoming Coinbase Listings in July 2025
2025-07-08 15:16:01
,
by Ilija Rankovic
15 New & Upcoming Binance Listings in 2025
2025-07-10 04:57:55
,
by Ilija Rankovic
What Is the Next Crypto to Explode in 2025?
2025-07-11 12:41:28
,
by Ilija Rankovic
Bitcoin (BTC) Price Prediction 2025 – 2030
2025-07-11 07:30:00
,
by Leon Waters
Ripple (XRP) Price Prediction 2025, 2026 – 2030
2025-07-05 04:55:17
,
by Eric Huffman
Ethereum Price Prediction 2025–2030: Will ETH Bounce Back?
2025-04-02 12:04:31
,
by Ben Beddow
Logo

Why Trust Cryptonews

2M+
Active Monthly Users Around the World
250+
Guides and Reviews Articles
8
Years on the Market
70
International Team Authors
editors
+ 66 More
Authors List

Best Crypto ICOs

Discover trending tokens still in presale — early-stage picks with potential

Explore Our Tools

Smart tools made for everyday crypto users

Market Overview

  • 7d
  • 1m
  • 1y
Market Cap
$3,821,737,790,874
11.07
Trending Crypto
Bitcoin News
Why Is Crypto Up Today? – July 11, 2025
2025-07-11 11:35:22
,
by Sead Fadilpašić
Press Releases
ChatGPT Predicts the Price of XRP, Solana and Pi Coin by the End of 2025
Price Analysis
XRP Price Prediction: Analyst Spots 2017 Setup on XRP Chart – New All-Time High Could Be Days Away
2025-07-09 16:39:09
,
by Simon Chandler
Best Crypto to Buy Now in July 2025 – Top Crypto to Invest In
2025-07-09 14:31:51
,
by Alan Draper
Best New Cryptocurrencies to Invest In July 11, 2025
2025-07-11 16:13:09
,
by Ines S. Tavares
13 Best Crypto Presales to Invest In 2025 – Presale Crypto List
2025-07-11 12:49:31
,
by Alan Draper
11 New & Upcoming Coinbase Listings in July 2025
2025-07-08 15:16:01
,
by Ilija Rankovic
15 New & Upcoming Binance Listings in 2025
2025-07-10 04:57:55
,
by Ilija Rankovic
What Is the Next Crypto to Explode in 2025?
2025-07-11 12:41:28
,
by Ilija Rankovic
Bitcoin (BTC) Price Prediction 2025 – 2030
2025-07-11 07:30:00
,
by Leon Waters
Ripple (XRP) Price Prediction 2025, 2026 – 2030
2025-07-05 04:55:17
,
by Eric Huffman
Ethereum Price Prediction 2025–2030: Will ETH Bounce Back?
2025-04-02 12:04:31
,
by Ben Beddow

More Articles

Price Analysis
Pi Coin Price Prediction: Crashing Toward All-Time Low – Is PI Going to $0?
Anas Hassan
Anas Hassan
2025-07-11 18:21:50
Price Analysis
Dogecoin Price Prediction: Fib Extension Flashes $4 Target – How Quickly Can DOGE Get There?
Anas Hassan
Anas Hassan
2025-07-11 17:53:23
Sead Fadilpašić
Journalist
Sead specializes in writing factual and informative articles to help the public navigate the ever-changing world of crypto. He has extensive experience in the blockchain industry, where he has served as an advisor and opinionist for various tech companies.
Read More
Crypto News in numbers
editors
Authors List + 66 More
2M+
Active Monthly Users Around the World
250+
Guides and Reviews Articles
8
Years on the Market
70
International Team Authors