Human-Targeted Attacks Are Now Web3’s Most Dangerous Threat, Report Finds
A Kerberus report finds human error, exploited via social engineering, is Web3's most dangerous security threat, causing significant losses.Summary
A new report by Web3 security firm Kerberus, titled "The Human Factor," identifies human-focused attacks as the most structurally dangerous vector in Web3 security. Data shows that approximately 44% of crypto thefts in 2024 stemmed from private key mismanagement, and human error is implicated in about 60% of security breaches. Kerberus CEO Alex Katz notes that while newcomers are targeted for their lack of understanding, veteran users are increasingly high-value targets because they interact with more dApps and sign larger transactions, making complacency highly damaging. CTO Danor Cohen argues that security failures stem not from users not understanding the tech, but from the system placing an unrealistic cognitive burden on individuals to constantly decipher technical signals. Attackers exploit natural psychological shortcuts like urgency and fear, bypassing technical defenses. The report suggests that relying solely on education or adding more warnings leads to security fatigue. Instead, the solution lies in real-time protection tools that analyze intent and behavior to stop harmful actions before they finalize, alongside user practices like pausing before signing transactions and separating high-value assets into different wallets.
(Source:BeInCrypto)