The digital asset landscape faced a troubling paradox in the year 2023. Despite a significant downturn in the total losses from crypto hacks, down to $1.9 billion—a stark 93.6% decline from the previous year—the frequency and methodology of attacks have given industry experts reason for concern.
Access Control: The Achilles’ Heel
As per the latest insights from Hacken, a renowned blockchain security auditor, nearly half of these nefarious activities can be traced back to access control vulnerabilities. These security breaches have not only led to substantial financial losses but also raised questions about the security measures adopted by crypto platforms.
Assessing the Damage
Though the Terra collapse of 2022 significantly inflated the previous year’s figures, the current year saw a 14% uptick in the number of hacking incidents. Each unauthorized access incident, particularly targeting hot wallets, siphoned off an average of $31 million, demonstrating the high stakes involved in these security lapses.
The Most Vulnerable Networks
Analysis of the attacks reveals a pattern of targeted networks, with BNB Chain (formerly Binance Smart Chain) bearing the brunt of 214 incidents. Ethereum followed closely with 178 incidents, and Arbitrum with 30, suggesting that the popularity and adoption of a blockchain might correlate with its appeal to cybercriminals.
Audits: A Missed Preventative Measure
The report sheds light on the startling fact that only 10% of exploited smart contracts had undergone an audit in 2023. This negligence, coupled with instances where developers deployed different code in production than what was audited, has exacerbated the security challenges within the crypto ecosystem.
A Silver Lining
In a surprising twist, the industry witnessed about 20% of the stolen funds being recovered, amounting to roughly $400 million. This recovery has been attributed to the swift action of protocol teams and, in some cases, the unexpected cooperation of the hackers themselves.
English