Finance
Share this article

Funds Lost to DeFi Hacks More Than Doubled to $1.3B in 2021: Certik

Centralization is the most common vulnerability, the security firm said.

By Eliza Gkritsi
Updated May 11, 2023, 5:47 p.m. Published Jan 13, 2022, 10:35 a.m.
(Adam Levine/CoinDesk)
(Adam Levine/CoinDesk)

The amount of money lost in hacks of decentralized financed (DeFi) projects more than doubled to $1.3 billion in 2021, with centralization the most common vulnerability, Certik said in its inaugural "State of DeFi Security" research report.

  • While the value lost climbed 160%, the amount was a smaller proportion of the total than in 2020 due to growth of the DeFi market, the security firm said in the report released on Wednesday. As a proportion of the crypto market's capitalization, losses dropped by 17%, according to the report.
  • The total value locked (TVL) in DeFi protocols at the end of 2021 was $243.88 billion, up from $18.29 billion the year before, according to DefiLlama data. That means the lost funds shrank to 0.5% of TVL last year from 2.78% in 2020.
  • Centralization was the most common vulnerability "by far," the security firm said. Certik found 286 discrete centralization risks through the 1,737 projects it audited, including privileged ownership. For example, some projects were drained when hackers obtained private keys that gave them complete control of smart contracts. This likely would have been avoided using multi-signature wallets or decentralized autonomous organizations (DAO) instead of one or a set of private keys.
  • The second-most common vulnerability was missing event emissions, followed by use of an unlocked compiler version, code lacking proper input validation and reliance on third parties. An event emission is information produced by a smart contract when it is executed.
  • The report also found that Ethereum surpassed the Bitcoin network on fee revenue. It now generates more than 64 times Bitcoin's revenue and four times the number of daily transactions. But Ethereum also suffered from its success because high transaction fees sent users to other platforms.
  • Certik noted the rise of Ethereum alternatives such as Binance Smart Chain. Binance's layer 1 protocol had TVL rise 31,000% to $21 billion, Certik said.
  • The security firm raised $80 million in a Series B2 fundraising in December 2021, bringing its valuation to $1 billion.

Read more: Cross-Chain DeFi Site Poly Network Hacked; Hundreds of Millions Potentially Lost

STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
By signing up, you will receive emails about CoinDesk products and you agree to our terms & conditions and privacy policy.

CORRECTION (Jan. 13 10:47 UTC): Corrects proportion of market cap in first bullet point.


ResearchSecurityHackExploitsCybersecurityDeFi

More For You

Bitcoin layer-2 builders pitch BTCFi as the next institutional unlock

By Margaux Nijkerk, AI Boost|Edited by Stephen Alpher
28 minutes ago
Bitcoin layer-2 builders at Consensus Hong Kong 2026 (CoinDesk)

Leaders from Citrea, Rootstock Labs and BlockSpaceForce argued that bitcoin’s scaling layers are less about throughput and more about turning the asset into a programmable financial base layer.

What to know:

  • Bitcoin layer-2 builders made the case on Thursday that the next phase of crypto’s evolution won’t be about replacing bitcoin as “digital gold,” but making it productive.
  • Speaking at Consensus Hong Kong 2026, leaders from Citrea, Rootstock Labs and investment firm BlockSpaceForce argued that Bitcoin’s scaling layers are less about raw throughput and more about turning the world’s largest cryptocurrency into a programmable financial base layer.
Read full story