Est. MMXXVISunday, May 24, 2026Vol. VI · № 273$13.99B total lossesRSS

Blockchain Breaches

An archive of cryptocurrency security incidents — hacks, exploits, bridge failures and rug pulls, documented with on-chain evidence.

Attack × Chain dossier

Phishing / Social Engineering attacks on Bitcoin

Total losses

$403.0M

4 incidents

№ 001Phishing / Social EngineeringJuly 16, 2025
BigONE Supply Chain Backend
Attackers compromised BigONE's backend and rewrote risk-control logic to auto-approve any withdrawal, draining $27M from the hot wallet without exposing keys.
BigONEEthereumBitcoinTronFunds Stolen
Loss
27.0M
USD
№ 002Phishing / Social EngineeringMay 31, 2024
DMM Bitcoin
DPRK operatives compromised a developer at wallet vendor Ginco via a fake LinkedIn job offer, draining 4,502.9 BTC ($305M) from Japanese exchange DMM Bitcoin.
DMM BitcoinBitcoinFunds Stolen
Loss
305.0M
USD
№ 003Phishing / Social EngineeringDecember 22, 2022
LastPass Vault Crypto Drain
A breach of LastPass encrypted vault backups led to a multi-year drain of victims storing seed phrases there; losses grew from $35M to over $400M.
LastPass usersEthereumBitcoinRippleFunds Stolen
Loss
37.0M
USD
№ 004Phishing / Social EngineeringJanuary 17, 2022
Crypto.com 2FA Bypass
2FA-bypass exploit drained $34M from 483 Crypto.com accounts; attackers authorised transactions without the second factor ever prompting the user.
Crypto.comBitcoinEthereumRecovered
Loss
34.0M
USD