In 2021, cybercriminals had a banner year, seizing $3.2 billion worth of cryptocurrencies. This number is sure to be surpassed in 2022 according to the latest study from Chainalysis, the popular blockchain data and analytics firm. According to the data, hackers have stolen $1.3 billion from exchanges, platforms, and private companies in the first three months of this year, with the victims predominantly found in DeFi.
How have hackers exploited Defi platforms?
Security breaches in which hackers gained access to victims’ private keys, the cryptographic equivalent of pickpocketing, were the primary cause of cryptocurrency attacks in the past. The Ronin Network hack in March 2022, which resulted in the theft of $615 million in cryptocurrency, demonstrated the continued effectiveness of the technique. Security breaches resulted in 35% of the value of all cryptocurrencies being stolen from 2020 to Q1 2022. According to Chainalysis, the most common source of theft is incorrect coding. Outside of the Ronin attack, code exploits and flash lending attacks, a kind of code exploit that involves cryptocurrency price manipulation, accounted for the majority of the money taken.
How do hackers launder stolen cryptocurrencies?
More stolen money went to DeFi platforms (51%) and dangerous services (25%) in 2021 than ever before. Previously a popular destination for stolen assets, centralized exchanges have fallen out of favor, garnering less than 15% of the total. This is most likely due to exchanges adopting AML and KYC protocols, which endanger the anonymity of cybercriminals. This year, Chainalysis added a new category to reflect what could be the first among cryptocurrency exchange hacks we’ve seen: chargebacks. The criminal behind the $600 million Poly Network hack returned $613 million in stolen assets in August last year and turned down a bug bounty offer.