In 2025, cyberattacks on crypto infrastructure reached new heights, resulting in substantial losses from breaches, as well as the involvement of state actors in these cyberattacks.
Invisible Crimes: Attacks on Crypto Infrastructure
According to TRM Labs, infrastructure attacks account for over 80% of losses, highlighting the vulnerability of the crypto industry. The primary targets have become private keys and recovery phrases, making crypto exchanges particularly susceptible to attacks. An example is the Bybit hack in February 2025, where $1.5 billion was stolen, representing nearly 70% of total losses for the year. Hackers are shifting their attacks from major platforms to end users, subjecting them to phishing attacks.
When States Enter the Game
Cyberattacks are increasingly perpetrated not only by criminals but also by state structures. For instance, North Korea actively utilizes crypto assets to fund its geopolitical ambitions. One example is the attack by the Gonjeshke Darande group on the Iranian crypto exchange Nobitex in June 2025 for purely geopolitical reasons. Thus, cryptocurrency thefts transition into strategic maneuvers.
Securing Crypto: A Global Challenge
To effectively combat cyberattacks in the sector, collaborative efforts are required. Robust security solutions must be implemented, such as multi-factor authentication, cold storage of assets, and regular audits. TRM Labs emphasizes that only cooperation between companies, governments, and law enforcement can significantly enhance protection against cyber threats.
Given the increasing threat of cyberattacks and the evolving nature of crime, the crypto industry must adapt and implement modern security strategies, combining efforts from all stakeholders.
