The crypto industry is facing a wave of large-scale attacks that have led to over $2.1 billion in digital assets stolen in 2025. According to TRM Labs, these thefts occurred across 75 incidents within the first six months of the year, showing a 50 percent jump compared to previous years.
Most of these funds were lost through infrastructure-focused breaches. TRM Labs noted that private key thefts, front-end compromises, and seed phrase leaks made up more than 80 percent of the stolen amount.
These types of attacks were significantly more damaging than typical exploit methods. Social engineering and insider access were found to be the leading enablers behind the most destructive intrusions.
Also Read: Ripple vs SEC Case Still Unresolved as Final SEC Vote Remains Pending
TRM Labs linked North Korea to an alarming $1.6 billion in crypto thefts, making the country responsible for nearly 70 percent of the total value stolen this year. The largest breach targeted Bybit, a Dubai-based exchange, and drove the average hack size to $30 million. This is double the $15 million average reported in 2024.
North Korean operatives continue to use these crypto crimes to bypass international sanctions. Their sustained involvement in global hacks has made them a major concern for cybersecurity agencies and blockchain platforms alike.
Geopolitical Cybercrime and Security Gaps Now Threaten Global Crypto Stability
Further intensifying the crisis, an Israeli hacker was identified as the mastermind behind a $100 million attack on Nobitex, an Iranian exchange. This incident occurred in June 2025 and highlighted how geopolitical tensions are increasingly spilling over into cybercrime targeting crypto networks.
TRM Labs warned that these breaches reveal deep security gaps within the digital asset ecosystem. Many of the attacks succeeded by targeting core systems and bypassing front-end protections.
In response, TRM Labs urged platforms to enhance security measures through the use of cold storage, multi-factor authentication, and continuous internal audits. They also emphasized the importance of detecting insider threats early and training staff to resist social engineering.
Conclusion
With global attacks increasing in scale and sophistication, crypto platforms must prioritize infrastructure defense. The rising threat from state actors and advanced hacking groups demands immediate and sustained action to protect users and platforms alike.
Also Read: Pi Network Launches AI-Powered Pi App Studio and Staking Feature on Pi2Day 2025
