$2.3 Billion Lost in H1 2025 — The Alarming State of Web3 Security

The first half of 2025 saw an unprecedented surge in crypto hacks and security breaches, pushing the total losses to $2.3 billion, a figure that has already surpassed the total for the entire year of 2024.

At QuillAudits, we closely monitored, analyzed, and documented these incidents in our H1 2025 Crypto Exploits & Security Breaches Report. This isn’t just another roundup — it’s a deep dive into the patterns, vectors, and high-profile attacks that shook the Web3 space in the past six months.

Here’s a snapshot of what we uncovered:

• $1.6 billion lost to Access Control exploits alone, making it the single largest contributor to losses.
• Social Engineering attacks followed closely, proving how human vulnerabilities remain a critical risk factor.
• Ethereum suffered the highest financial impact, with $1.59 billion drained, confirming its status as both the most popular and most targeted blockchain.
• Some of the most significant breaches included the Bybit exploit ($1.49B), the massive Bitcoin user hack ($330M), and Cetus protocol compromise ($223M).
• Alarmingly, 95% of the total losses stemmed from just three attack vectors — Access Control, Social Engineering and Integer Overflow attacks.

This report serves as a wake-up call for developers, project owners, investors, and the broader crypto community. It highlights how critical it is to adopt proactive security measures, conduct regular audits, and stay updated on evolving threat landscapes.

Download the complete report to explore real case studies, attack patterns, and key takeaways that can help protect your protocol.

👉 Download the H1 2025 Crypto Exploits & Security Breaches Report

Don’t wait for vulnerabilities to become exploits — stay informed, stay secure.

At QuillAudits, we’re committed to sharing these insights with the community, because securing the decentralized future starts with awareness and action.