HomeEverythingEducation
Equities & FundsCrypto & Digital AssetsAI & TechnologyBusiness & CorporateUS Politics & PolicyGeopolitics & Global RiskMacro, Rates & FXCommodities & EnergyEuropean Politics & MarketsAsia-PacificReal Estate & Property
← All Stories

Crypto hacks fell 47% in H1 but ecosystem is no safer: CertiK

Created at 6 Jul · 1:11 PM1 source↑ Market-relevant
IN SHORT

Crypto losses dropped 46.8% year-on-year to $1.32 billion in H1 2026, but CertiK warns the ecosystem is not safer. Sophisticated attackers, including North Korean state actors, are driving more destructive exploits, with wallet compromises and phishing being key vectors.

✉Newsletter

PiQ Daily

Pick your topics. Get only what matters, on your cadence.

Key Numbers

46.8%year-on-year drop in crypto losses H1 2026
$1.32 billiontotal crypto losses H1 2026
$508.2 millionlosses from phishing in Q1
$807.5 millionlosses from wallet compromises in Q2
70%Q2 losses from KelpDAO and Drift Protocol hacks
$6 billioncrypto stolen by North Korean hackers since 2017
207crypto incidents in H1 2026
60%H1 incidents from smart contract exploits

Who's Involved

CertiK
crypto security firm reporting on H1 2026 exploits
North Korean hackers
believed to be behind major Q2 exploits
TRM Labs
estimated North Korean hackers stole over $6 billion since 2017
US, Japanese and South Korean authorities
met to discuss mitigating North Korea's cyber activity

↳ Why This Matters

The findings indicate that despite a reported decrease in overall crypto losses, the threat landscape is becoming more sophisticated and dangerous, with state-sponsored actors and AI posing significant risks to the ecosystem's security.

Key facts

  • Crypto losses decreased by 46.8% year-on-year to $1.32 billion in the first half of 2026.
  • Despite the overall decrease, CertiK warns the crypto ecosystem is not safer due to sophisticated attackers.
  • Wallet compromises were the primary attack vector in Q2, contributing to $807.5 million in losses.
  • KelpDAO and Drift Protocol hacks, attributed to North Korean state-sponsored hackers, were major contributors to Q2 losses.
  • North Korean hackers are estimated to have stolen over $6 billion in crypto since 2017.
  • The number of crypto incidents more than doubled in H1 2026 compared to the previous year.

Crypto losses saw a significant year-on-year decrease of 46.8% in the first half of 2026, totaling $1.32 billion. However, crypto security firm CertiK warns that this decline is misleading and the ecosystem remains vulnerable.

Phishing attacks were the primary driver of losses in the first quarter, amounting to $508.2 million. In the second quarter, wallet compromises emerged as the dominant attack vector, contributing to $807.5 million in losses. A substantial portion of these Q2 losses, over 70%, stemmed from the KelpDAO and Drift Protocol exploits, which are attributed to North Korean state-sponsored hackers.

CertiK highlighted that the prior year's figures were skewed by the record $1.4 billion Bybit hack, suggesting that while headline loss figures may decrease, the underlying threat landscape is evolving. North Korean hackers continue to be a major concern, having allegedly stolen over $6 billion in cryptocurrency since 2017, according to TRM Labs.

The severity of these attacks, particularly those linked to North Korea, prompted a meeting between US, Japanese, and South Korean authorities to address malicious cyber activities and illicit revenue generation. Cybersecurity leaders also note the increasing use of AI by North Korean IT workers to enhance their schemes, potentially increasing the scale and sophistication of exploits.

CertiK cautioned that the industry is experiencing a structurally higher rate of attack activity compared to the previous year. Excluding the Bybit incident, attacks are becoming more targeted and financially destructive per event. TRM Labs corroborated this, noting that the reduction in total dollars stolen does not indicate a safer environment but rather the absence of another record-breaking theft. TRM's analysis revealed a more than doubling of incidents in H1 2026, with smart contract exploits accounting for 60% of these events.

CertiK emphasized that private keys and multisignature wallet management remain critical security vulnerabilities. The firm urged crypto protocols and institutions to strengthen all layers of private key management, including hardware security, governance, and geographic distribution of signers, stating that security investments in this area yield asymmetric returns.

Frequently asked questions

Total crypto losses in the first half of 2026 fell to $1.32 billion, a 46.8% decrease year-on-year.

The decrease is misleading because the previous year's losses were heavily skewed by a single, massive hack (Bybit). The underlying number of incidents and the sophistication of attacks have increased.

The KelpDAO and Drift Protocol hacks, which accounted for over 70% of Q2 losses, are believed to have been carried out by North Korean state-sponsored hackers.

Phishing drove significant losses in Q1, while wallet compromises were the biggest attack vector in Q2. Private key management is identified as a critical security surface.

What Happens Next

01Authorities continue to discuss strategies to mitigate North Korea's cyber activities.
02Crypto protocols are urged to enhance private key management security measures.

Get the newsletter.

Pick the topics you actually care about. We'll email when there's news worth your time, on the cadence you choose. Cancel any time from your account.

Cadence

How It Developed

Crypto losses fell 46.8% year-on-year to $1.32 billion in H1 2026.
CertiK stated the drop is misleading due to a large prior year hack.
Phishing drove $508.2 million in losses in Q1.
Wallet compromises contributed to $807.5 million in losses in Q2.
KelpDAO and Drift Protocol hacks, attributed to North Korean hackers, accounted for over 70% of Q2 losses.
North Korean hackers have stolen over $6 billion since 2017.
US, Japanese, and South Korean authorities met to discuss mitigating North Korea's cyber activity.
North Korean IT workers are increasingly using AI to enhance cyber schemes.

Sources

T1
Crypto hacks fell 47% in H1 but ecosystem is no safer: CertiKCrypto exploits rose 59% quarter-on-quarter to $807.5 million in Q2, due partly to the KelpDAO and Drift Protocol exploits, which came at the hands of North Korean hackers.Cointelegraph

Related Stories

Summer.fi Hit By Suspected $6M Flash Loan Exploit
6 Jul · 11:00 AM
Ether Leads Crypto Gains as Bitcoin Holds Above $63,000
6 Jul · 5:15 AM
Stablecoin Transaction Volume Reaches Record $1.79 Trillion in June
6 Jul · 5:50 AM
Bitcoin Recovers Above $62,000 as Altcoin Optimism Grows
6 Jul · 10:50 AM
Belgian regulator flags six unauthorized crypto providers after MiCA deadline
6 Jul · 12:30 PM