The rise of web3 technologies has sparked a wave of innovation, but it’s also given rise to a new breed of cyber threats. According to a recent study by Immunefi, the cryptocurrency industry has seen significant growth in the first quarter of 2024, but it’s not all smooth sailing. With a staggering $100 billion locked in web3 protocols as of March 2024, it’s no wonder that hackers are licking their lips. Immunefi’s analysis reveals that the crypto industry suffered losses totaling $336,311,217 in the first quarter alone. Despite a 23.1% drop compared to the previous year, indicating some progress in beefing up security, vulnerabilities persist. Two major hacks—OrbitBridge and Munchables—stand out, accounting for a whopping $144,480,000, or 43% of total losses. Orbit Bridge, a key part of the Orbit Chain cross-chain project, was hit by an $81 million attack on January 1, 2024. Meanwhile, Munchables, a popular NFT game on the Ethereum layer 2 system known as Blast, lost $62M in assets due to a breach on March 26. The report highlights that hacks make up a whopping 95.6% of overall losses, with fraud making up the remaining 4.4%. Interestingly, all vulnerabilities were found in DeFi, with Cefi platforms remaining unscathed. Ethereum emerges as the most vulnerable blockchain, with 33 incidents comprising 51% of total losses. BNB Chain follows closely behind, with 14 cases contributing to 22% of losses, while Arbitrum records 6 incidents, resulting in a 9.2% loss. Despite significant losses, there have been instances of successful fund recovery, totaling $73,885,000 across seven cases. This underscores the need for swift and coordinated action to prevent security breaches.
Full report : Immunefi says that Crypto Hacks Drain $336 Million in Q1 2024.
While these are the largest Web3 hacks that have happened in the first quarter of 2024, OODA has been compiling a comprehensive Web3 incident database based on our research to categorize what compromises are taking place as well as document the root causes that plague Cryptos, DeFi, NFTs, and Web3 in general. Tracking root causes provides comprehensive insights into how innovators can create robust cyber risk management approaches and reduce the potential for consequential attacks. You can access the OODA comprehensive Crypto Incident tracker here.
