Gate News update: According to DefiLlama data, in the first quarter of 2026, crypto hackers stole about $169 million in assets from 34 DeFi protocols in total, a sharp decline compared with the same period in 2025. Despite the overall loss decreasing, multiple major attacks still exposed security risks in the industry. Among them, in January the Step Finance private key leak incident resulted in losses of about $40 million, the largest attack of the quarter; next was the Truebit smart contract manipulation incident, which led to $26.4 million worth of Ethereum being stolen; in March, the Resolv Labs private key leak incident ranked third.
By comparison, the first quarter of 2025 saw losses as high as $1.58 billion due to major incidents, making the current data look relatively mild. However, security experts emphasize that crypto security risks have not weakened. Kraken Chief Security Officer Nick Percoco said that hacker activity depends more on market cycles and liquidity distribution than on specific time nodes. During bull markets, product launches, or periods when capital rapidly concentrates, attackers are more likely to lock onto targets and carry out attacks.
The current threat structure is also continuing to evolve. The industry faces a multi-layer threat landscape shifting from highly organized hacker groups to opportunistic attackers. Attack methods include private key theft, exploitation of smart contract vulnerabilities, and social engineering attacks. Some hacker groups reportedly linked to North Korea remain an important source of risk, and their attacks often target high-value, high-complexity infrastructure.
In addition, while the transparency of crypto assets improves efficiency, it also makes it easier for attackers to identify potential vulnerabilities. Security research shows that complex systems, weak permission management, and protocols with rapid iteration are more likely to become targets. Industry insiders expect that as AI technology develops, credential theft and automated attack methods may further increase in 2026.
Although the current data shows losses declining, security challenges remain severe. The DeFi ecosystem must continuously strengthen audits, key management, and risk controls to reduce systemic risk while the market expands.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
KelpDAO Exploiter Borrows $195M ETH from Aave, TVL Drops $6.28B as Whales Withdraw
Gate News message, the KelpDAO exploiter borrowed over 82,600 ETH ($195M) from Aave using RSETH as collateral, resulting in bad debt appearing on Aave. Following this incident, numerous whales withdrew funds from Aave, causing its TVL to decline from $26.396B to $20.114B, a decrease of $6.28B.
GateNews2h ago
Monad Co-Founder Suggests Dynamic Caps on Collateral Deposits to Mitigate Hacking Risks
Keone Hon suggests that pooled lending protocols should implement gradual rate limits on collateral asset increases to mitigate risks during hacks. He argues this could have prevented significant losses, as seen with rsETH depositors.
GateNews5h ago
Hong Kong Police Warn of 'AI Quantitative Trading' Crypto Scam, Woman Loses HK$7.7 Million
Hong Kong police revealed a cryptocurrency fraud where a woman lost HK$7.7 million to scammers posing as investment experts via Telegram, promising high returns through AI trading. The police warned the public of the risks associated with cryptocurrency investments.
GateNews6h ago
Morpho Pauses MORPHO OFT Cross-Chain Bridge on Arbitrum Following Kelp DAO and LayerZero Events
Morpho Association has temporarily suspended the OFT cross-chain bridge for MORPHO tokens on Arbitrum due to recent issues with Kelp DAO and LayerZero Bridge, pending confirmation of the rsETH incident's cause.
GateNews6h ago
Kamino Pauses LayerZero-Related Asset Interactions, Closes Deposit and Lending Functions
Kamino has temporarily suspended interactions with LayerZero-related tokens as a precaution, while allowing withdrawals and debt repayments. They emphasize that this measure is for risk management and that user funds are safe.
GateNews11h ago
Kelp DAO Hacked for $292 Million: LayerZero Cross-Chain Bridge Attacked with Forged Messages, Biggest DeFi Event of 2026
Kelp DAO was hacked on April 19. The attacker used LayerZero’s cross-chain bridge to forge messages, releasing 116,500 rsETH, for losses of about $292 million, making it the largest DeFi event of 2026. This incident highlights security vulnerabilities in cross-chain bridges, triggering a sharp market reaction; related protocols also urgently froze assets, facing further liquidation risk.
ChainNewsAbmedia12h ago
