2022 Crypto Attacks Were Least in December, With $62M Lost in Heists, Certik Says

However, the blockchain audit firm noted some $3.7 billion was lost to scams and hacks in 2022, making it the worst year to date for nefarious activities in the market’s history.

AccessTimeIconJan 3, 2023 at 9:05 a.m. UTC
Updated May 9, 2023 at 4:05 a.m. UTC
10 Years of Decentralizing the Future
May 29-31, 2024 - Austin, TexasThe biggest and most established global hub for everything crypto, blockchain and Web3.Register Now

Crypto market participants had few reasons to cheer in the last month of 2022 – but a low attack and theft figure was one of them.

In December $62 million worth of tokens were stolen, scammed or attacked, making it the least harmful month in 2022 in terms of money lost to nefarious activities. In contrast, CertiK recorded over $595 million worth of crypto-based attacks in November.

  • Three Crypto Predictions in 2024
    Three Crypto Predictions in 2024
  • Running With Crypto: 5 Questions With TRM Labs' Ari Redbord
    Running With Crypto: 5 Questions With TRM Labs' Ari Redbord
  • Hacks Involving North Korea Are 'Even Greater Problem': Legal Experts
    Hacks Involving North Korea Are 'Even Greater Problem': Legal Experts
  • Breaking Down the State of Hacking in 2024
    Breaking Down the State of Hacking in 2024
  • The year, overall, saw over $3.7 billion lost to various attacks, hacks and scams – making 2022 the worst year in the market’s history so far. Attackers gained over $3.2 billion in 2021. But 2022 was off to an even rockier start with a $325 million exploit of popular cross-chain service Wormhole, which was followed by a $625 million attack on Axie Infinity’s Ronin bridge, and then a $200 million exploit of the Nomad bridge.

    Helio Protocol’s $15 million attack and Defrost Finance’s $12 million alleged rug pull were the top attacks in December. A rug pull refers to a developer or creator promoting a project, such as a new token or non-fungible token release, and then disappearing with investor money.

    Flash loan attacks saw over $7.6 million impacted, with a single attack on crypto project Lodestar accounting for $6.5 million of this figure. Four other projects saw similar attacks with amounts ranging from $50,000 to $300,000.

    Flash loans are a popular way for attackers to gain funds to conduct exploits on decentralized finance (DeFi) systems.

    The loans allow traders to borrow unsecured funds from lenders using smart contracts instead of third parties. They do not require any collateral because the contract considers the transaction complete only when the borrower repays the lender. This means a borrower defaulting on a flash loan would cause the smart contract to cancel the transaction and the money would be returned to the lender.

    Attack vectors in the crypto sector range from exploiting bridges, a blockchain-based tool that allows users to transact between different networks, to market manipulation, where rogue traders utilize millions of dollars to move thinly traded markets in their favor to net several multiples of the initial capital deployed.


    Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

    CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. The Bullish group is majority-owned by Block.one; both companies have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk employees, including journalists, may receive options in the Bullish group as part of their compensation.

    Shaurya Malwa

    Shaurya is the Deputy Managing Editor for the Data & Tokens team, focusing on decentralized finance, markets, on-chain data, and governance across all major and minor blockchains.

    Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.

    Read more about