Share this article
2022 Crypto Attacks Were Least in December, With $62M Lost in Heists, Certik Says
However, the blockchain audit firm noted some $3.7 billion was lost to scams and hacks in 2022, making it the worst year to date for nefarious activities in the market’s history.
Updated May 9, 2023, 4:05 a.m. Published Jan 3, 2023, 9:05 a.m.
Crypto market participants had few reasons to cheer in the last month of 2022 – but a low attack and theft figure was one of them.
In December $62 million worth of tokens were stolen, scammed or attacked, making it the least harmful month in 2022 in terms of money lost to nefarious activities. In contrast, CertiK recorded over $595 million worth of crypto-based attacks in November.
STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
The year, overall, saw over $3.7 billion lost to various attacks, hacks and scams – making 2022 the worst year in the market’s history so far. Attackers gained over $3.2 billion in 2021. But 2022 was off to an even rockier start with a $325 million exploit of popular cross-chain service Wormhole, which was followed by a $625 million attack on Axie Infinity’s Ronin bridge, and then a $200 million exploit of the Nomad bridge.
Helio Protocol’s $15 million attack and Defrost Finance’s $12 million alleged rug pull were the top attacks in December. A rug pull refers to a developer or creator promoting a project, such as a new token or non-fungible token release, and then disappearing with investor money.
Flash loan attacks saw over $7.6 million impacted, with a single attack on crypto project Lodestar accounting for $6.5 million of this figure. Four other projects saw similar attacks with amounts ranging from $50,000 to $300,000.
Flash loans are a popular way for attackers to gain funds to conduct exploits on decentralized finance (DeFi) systems.
The loans allow traders to borrow unsecured funds from lenders using smart contracts instead of third parties. They do not require any collateral because the contract considers the transaction complete only when the borrower repays the lender. This means a borrower defaulting on a flash loan would cause the smart contract to cancel the transaction and the money would be returned to the lender.
Attack vectors in the crypto sector range from exploiting bridges, a blockchain-based tool that allows users to transact between different networks, to market manipulation, where rogue traders utilize millions of dollars to move thinly traded markets in their favor to net several multiples of the initial capital deployed.
More For You
What to know:
- As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
- GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
- Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
More For You
Pye Finance Raises $5M Seed Round Led by Variant and Coinbase Ventures
The platform aims to make locked Solana staking positions tradable via an onchain marketplace.
What to know:
- Pye Finance raised a $5 million seed round led by Variant and Coinbase Ventures, with participation from Solana Labs, Nascent and Gemini.
- The startup is building an onchain marketplace on Solana for time-locked staking positions that can be traded.
- Pye says the product targets Solana’s large pool of staked SOL, worth roughly $75 billion, and aims to give validators and stakers more flexibility over terms and reward flows.
Top Stories
