Filip Radwanski | Sopa Images | Lightrocket | Getty Images
Hackers more than doubled their cryptocurrency spoils in the first half of 2024 compared with a year ago, a report from blockchain research firm TRM Labs showed.
The report said hackers looted crypto valued at $1.38 billion between Jan. 1 and June 24, more than double the $657 million during the same period a year ago. Like last year, a handful of large attacks drove the increase in plundered crypto, with the top five hacks accounting for 70% of the amount stolen in the first half of the year.
Top attack vectors in 2024 include private key and seed phrase compromises, said TRM Labs. A seed phrase is a sequence of random words that stores the information needed to access or recover a crypto wallet.
The largest heist so far this year netted more than $300 million worth of bitcoin from Japanese crypto exchange DMM Bitcoin.
Hackers used stolen private keys or address poisoning, where attackers send a small amount of crypto from a wallet with a similar-looking address crafted to mimic yours or your recipient’s, with the intention to trick the victim into sending funds to the wrong wallet.
Crypto addresses are long, complex strings of characters that are difficult to memorize or manually enter without making mistakes.
TRM Labs said there have not been fundamental changes in the crypto ecosystem’s security that could have contributed to the increase. It said the number of attacks and attack vectors were not significantly different year over year.
But the firm noted that crypto prices have been higher on average in the first half of this year, which could have contributed to the higher value.
Crypto companies have been frequent targets for hacks and cyberattacks.
Crypto exchange Mt. Gox filed for bankruptcy in 2014 after a series of hacks stole up to 950,000 bitcoin, which is worth more than $54 billion at today’s prices.
In November, about $115 million was stolen from HTX exchange and Heco Chain, two crypto platforms linked to high-profile entrepreneur Justin Sun.
Crypto firms can combat against hacks and exploits with a multi-layered defense strategy, including measures like regular security audits and robust encryption, said TRM Labs.
Educating employees and implementing a comprehensive incident response strategy can also help protect companies, it said.