Overview
- Immunefi estimates that nearly 80% of projects hit by major breaches never regain their prior value or operations.
- Analysts report that confidence collapses when teams respond slowly or stay silent, triggering rapid outflows of users, liquidity, and partners.
- Recent exploits more often target people rather than code, with phishing, malicious approvals, and compromised keys highlighted by a reported $282 million loss to a Trezor support impersonation scam.
- Chainalysis tallied about $3.4 billion in crypto losses for 2025, with roughly 69% concentrated in three incidents, including the $1.4 billion Bybit hack.
- Security tooling is improving, yet many teams still lack clear incident-response playbooks or hesitate to pause contracts and disclose early, which compounds the damage.