According to a recent report by blockchain security firm CertiK, the total losses connected to crypto activities plummeted by 46.8% year-over-year, bringing the figure down to $1.32 billion during the first half of 2026. However, CertiK has cautioned that this reduction should not be seen as an indicator of a more secure digital asset environment.
Changing Attack Strategies
In their analysis, CertiK noted that the traditional threat of phishing has taken a backseat as wallet compromises emerged as the primary method of attack in the second quarter of the year. This shift resulted in wallet-related hacks accounting for a staggering $807.5 million in losses, while phishing contributed to $508.2 million in the first quarter. Notably, more than 70% of the losses in the second quarter were linked to two significant incidents involving KelpDAO and Drift Protocol, both linked to North Korean state-sponsored hacking groups.
Understanding the Decline in Losses
The report elaborates that the apparent decrease in total losses is significantly influenced by the absence of any extraordinary events like the $1.4 billion hack of Bybit that occurred last year. CertiK argued that simply comparing loss figures can misrepresent the reality, as the nature of cyberattacks is evolving. Attackers are now executing fewer random attacks, instead focusing on more targeted operations that cause substantial harm per incident.
On a broader scale, while the total loss amounts appear to be declining, CertiK warns that the frequency and intensity of cyberattacks are structurally higher than they were a year ago. When the exceptional Bybit incident is excluded from last year’s figures, it was concluded that individual attacks have become more financially damaging and are increasingly concentrated on high-value targets.
Trends in Cryptocurrency Security
Backing up CertiK's findings, TRM Labs' H1 2026 report observed a notable increase in cryptocurrency-related security incidents, rising from 83 incidents in the first half of 2025 to 207 in this year. This marks the highest total in six months ever recorded by the firm. Smart contract exploits were particularly prominent, making up approximately 60% of all incidents.
With the evolving landscape of threats, the emphasis on securing private keys has never been more critical. Both CertiK and TRM Labs stress the importance of prioritizing key security to mitigate risks in this increasingly challenging environment. As malicious actors become more targeted and sophisticated, protecting digital assets remains a top concern for cryptocurrency users and organizations alike.


