51% of Crypto Losses in 2024 Linked to Its Ecosystem

The Ethereum ecosystem witnessed the largest losses in 2024 amid a massive rise in crypto hacks.

According to a Cyvers report, the Web3 ecosystem suffered staggering financial losses in 2024, with over $6 billion drained through hacks, exploits, and cyberattacks, with Web3 hacks resulting in $2.3 billion loss.

Among the affected blockchains, Ethereum emerged as the hardest hit, accounting for 51% of these losses. Notably, as the backbone of decentralized finance (DeFi), Ethereum’s widespread adoption and liquidity made it a primary target for cybercriminals.  

Alarming Growth in Web3 Security Breaches  

The numbers highlight a troubling trend. Losses soared by 40% compared to 2023, showing how hackers are evolving faster than ever. The year saw $2.3 billion siphoned from blockchain projects, exchanges, and DeFi platforms, with Ethereum users bearing the brunt.  

According to Cyvers, the quarterly breakdown showed consistent financial damage, with Q1 losses reaching $517 million, Q2 rising to $587 million and Q3 peaking at $669 million. Interestingly, in Q4 2024, losses slowed to $130 million.  

Although 2024’s total remained below the $3.78 billion record set in 2022, the upward trajectory signals worsening vulnerabilities in the Web3 space.  

Why Ethereum Was a Prime Target  

Ethereum’s dominance in the DeFi ecosystem made it particularly vulnerable. Its extensive user base and massive liquidity pools presented hackers abundant opportunities. From smart contract flaws to access control weaknesses, attackers leveraged every vulnerability.  

While Ethereum suffered the most significant financial damage, other blockchains also endured heavy hits. The BNB Chain accounted for 24% of losses, while Bitcoin, XRP, and Arbitrum each faced smaller but substantial breaches.

Access Control Failures  

Security lapses involving access controls were the primary culprit behind the year’s crypto losses, contributing to 81% of the stolen funds. Weak authentication and poor permission management left users and projects exposed.  

The remaining 19% stemmed from smart contract exploits. Hackers exploited coding errors to manipulate systems, drain funds, and compromise platforms. Together, these vulnerabilities showed the pressing need for better security practices across the industry.  

Major 2024 Hacks

The Cyvers report also called attention to some of the most high-profile incidents of 2024. For instance, DMM Bitcoin lost $305 million, while PlayDapp saw $290 million vanish. Other notable breaches included WazirX, which lost $235 million, and Radiant Capital, which suffered a $55 million theft.  

While some funds were recovered, success rates declined sharply as the year progressed. Early 2024 saw promising recoveries, with $620 million reclaimed in Q1 and $562 million in Q2. However, this momentum faded by Q4, with only $25 million recovered during the final months.