Assets
Crypto Deposit
Fiat Deposit
Convert
Transfer
Withdraw
My vouchers
Fund history
Dashboard
Account Security
Identity verification
API Management
Transaction Report
Log out
Register
BTCC / BTCC Square / coincentral /
Crypto Hack Losses Plunge 60% to $76M in December—Security Gains Momentum

Crypto Hack Losses Plunge 60% to $76M in December—Security Gains Momentum

Author:
coincentral
Published:
2026-01-02 13:29:35
11
2

Hackers hit a wall last month as crypto losses plummeted by 60%—dropping to just $76 million in December. That’s the kind of dip everyone can celebrate.

Turning the Tide

After a brutal year of exploits, the industry’s defenses are finally hardening. Better audits, real-time monitoring, and a shift toward institutional-grade custody are starting to bite. It’s not just luck—it’s a maturing ecosystem learning to protect its own.

The $76 Million Reality Check

Let’s not pop champagne just yet. Seventy-six million is still a staggering sum—enough to make traditional finance auditors reach for the smelling salts. In their world, that’s a catastrophic failure; in crypto, it’s marked as ‘progress.’ Perspective is everything.

Building While Battling

The real story isn’t the decline—it’s the relentless innovation happening under fire. Developers are coding smarter contracts, protocols are implementing circuit-breakers, and insurance products are gaining traction. Security is becoming a feature, not an afterthought.

A Cautious Win for Crypto Resilience

This drop signals a sector growing thicker skin. The easy pickings are vanishing, forcing attackers to work harder for diminishing returns. While perfect safety is a mirage, trending downward in losses while scaling upward in adoption? That’s a bullish signal no skeptic can easily dismiss—even if Wall Street still thinks a cold wallet is something you keep your salad in.

TLDR

  • Crypto hack losses in December fell by 60 percent compared to November, totaling approximately $76 million.
  • A single address poisoning scam caused the largest loss in December, resulting in a $50-million theft.
  • A private key leak involving a multi-signature wallet led to another major loss of around 27.3 million dollars.
  • A phishing scheme by a Brooklyn man resulted in the theft of 16 million dollars from about 100 Coinbase users.
  • Browser wallets continued to be a frequent target, including a 7 million dollar exploit on Trust Wallet’s browser extension.

Crypto-related exploit losses dropped sharply in December, with blockchain security firm PeckShield reporting a 60% decrease to $76 million, marking a reversal from previous monthly spikes, and reflecting reduced activity across major attack vectors even as targeted incidents persisted.

Address Poisoning Scam Drives Largest Losses

PeckShield confirmed 26 major crypto hacks in December, with fewer attacks causing larger single-event losses across the board. The biggest incident involved a $50 million address poisoning scam that tricked a user into sending funds to a fake address.

#PeckShieldAlert December 2025 witnessed ~26 major crypto exploits, resulting in total losses of ~$76M.

This figure represents a decrease of over 60% from November's total of $194.27M, marking a significant reduction in monthly losses.

Notably:
🔺Wallet 0xcB80…819 lost $50M… pic.twitter.com/CNW3R6646j

— PeckShieldAlert (@PeckShieldAlert) January 1, 2026

Scammers in such attacks send tiny transactions from addresses mimicking legitimate ones, hoping users mistakenly copy them during transfers. The fraudulent addresses typically match the start and end of genuine ones, making them hard to spot in transaction histories.

These exploits rely on visual confusion and quick decision-making, especially when victims are rushing through transactions or under pressure. PeckShield advised users to carefully verify each character of an address before transferring funds to avoid such errors.

“Address poisoning continues to be a favored trick for attackers,” PeckShield said in its December summary. The firm also urged users not to rely on saved transaction data when sending crypto assets to avoid redirection.

Multi-Signature Wallet Breach and Browser Wallet Threats

Another large incident involved a leaked private key that led to the theft of $27.3 million from a multi-signature wallet. Despite multi-signature protections, weak key management practices allowed attackers to gain full control over the wallet.

PeckShield said this breach highlighted that even complex wallet systems can be exposed through single points of failure. The stolen amount represents over one-third of December’s total, emphasizing the size of individual incidents over volume.

Trust Wallet’s browser extension also faced a crypto hack on Christmas Day, resulting in losses of around $7 million. PeckShield cited ongoing risks associated with browser-based wallets due to their constant internet connection and exposure.

Security firms continue to warn users about browser wallets, recommending hardware wallets for long-term private key storage. PeckShield reminded users to keep their private keys offline whenever possible and avoid sharing them under any condition.

Social Engineering and Phishing Scheme Uncovered

U.S. authorities charged Ronald Spektor, a 23-year-old from Brooklyn, with stealing $16 million through phishing and social tactics. According to prosecutors, Spektor posed as a Coinbase employee and tricked nearly 100 users into sending funds to his wallets.

He allegedly told victims their funds were at risk and urged them to act quickly, creating a false sense of urgency. Operating under the alias “lolimfeelingevil,” Spektor exploited panic and bypassed security controls through manipulation.

Officials said no technical breach occurred; instead, Spektor used psychological pressure to bypass victims’ usual caution. The Brooklyn District Attorney stated the operation relied purely on deception and not software or platform vulnerabilities.

PeckShield noted that despite the decrease in total losses, security threats remain active and require constant vigilance. The firm concluded that verifying transaction details and using cold storage can prevent many types of common crypto hacks.

|Square

Get the BTCC app to start your crypto journey

Download on the App Store GEI IT ON Google Play

Get started today Scan to join our 100M+ users

Exchange for a better future

Products
Services
Guides
About Us
Terms & Agreement
Customer Service

Risk warning: Digital asset trading is an emerging industry with bright prospects, but it also comes with huge risks as it is a new market. The risk is especially high in leveraged trading since leverage magnifies profits and amplifies risks at the same time. Please make sure you have a thorough understanding of the industry, the leveraged trading models, and the rules of trading before opening a position. Additionally, we strongly recommend that you identify your risk tolerance and only accept the risks you are willing to take. All trading involves risks, so you must be cautious when entering the market.

The world’s longest-running cryptocurrency exchange since 2011 © 2011 - 2026 BTCC.com. All rights reserved

All articles reposted on this platform are sourced from public networks and are intended solely for the purpose of disseminating industry information. They do not represent any official stance of BTCC. All intellectual property rights belong to their original authors. If you believe any content infringes upon your rights or is suspected of copyright violation, please contact us at [email protected]. We will address the matter promptly and in accordance with applicable laws.BTCC makes no explicit or implied warranties regarding the accuracy, timeliness, or completeness of the republished information and assumes no direct or indirect liability for any consequences arising from reliance on such content. All materials are provided for industry research reference only and shall not be construed as investment, legal, or business advice. BTCC bears no legal responsibility for any actions taken based on the content provided herein.