Hacken’s 2025 Security Report Shows Nearly $4B in Web3 Losses
Hacken's 2025 report indicates Web3 losses reached $3.95 billion, largely driven by North Korean actors and poor key security.Summary
Hacken's 2025 Yearly Security Report reveals total Web3 losses hit approximately $3.95 billion, an increase of about $1.1 billion from 2024. Over half of these losses were attributed to North Korean threat actors, primarily due to the record-setting $1.5 billion Bybit breach. The report emphasizes that the most significant and unrecoverable losses stemmed not from smart contract bugs, but from operational security failures like weak keys, compromised signers, and poor off-boarding procedures, accounting for nearly 54% of all losses ($2.12 billion). Hacken experts noted that while regulators are defining better security standards (e.g., role-based access control, secure custody), many Web3 companies continued insecure practices in 2025. Moving forward, Hacken urges mandatory security measures like regular pen tests and continuous monitoring, and suggests regulators must specifically address North Korean threat playbooks with mandated threat intelligence sharing and risk assessments.
(Source:Cointelegraph)