Web3 security losses climbed in 2025, rising 37% even as the number of incidents declined, driven by a handful of high-impact exploits. According to CertiK’s Skynet Hack3D security report, supply chain and phishing attacks accounted for the majority of losses. Ethereum and cross-chain platforms remained the primary targets for large-scale attacks, underscoring the evolving threat landscape.
Attacker strategy appears to favor limited, high-impact incidents over broad campaigns as on-chain activity rebounds. With defenders needing to tighten supply-chain controls and anti-phishing protections, risk management remains a priority for the Web3 ecosystem.
Web3 security losses increased by 37% in 2025 despite fewer incidents, driven by a handful of high-impact exploits. CertiK’s Skynet Hack3D security report notes that supply chain and phishing attacks accounted for the bulk of losses, underscoring the shift toward targeted breaches. Ethereum and cross-chain platforms remained the primary targets for large-scale attacks, highlighting the evolving threat landscape as on-chain activity rebounds. Analysts say attacker behavior is increasingly risk-focused, prioritizing limited incidents with outsized impact over broad campaigns.
Leave a Reply