Biggest Crypto Hacks of All Time: Complete History (2026 Update)

Since 2011, criminals, state actors and opportunistic exploiters have stolen more than $20 billion in cryptocurrency through hacks, exploits and exchange compromises. The history of crypto is, in many ways, the history of these thefts. Every major incident has reshaped how exchanges store funds, how DeFi protocols handle smart contract upgrades, and how regulators view the entire industry. Understanding the biggest crypto hacks is not just a fascinating piece of trivia. It is essential context for anyone who holds digital assets, builds in Web3 or trades on centralized platforms.

This guide ranks the 15 biggest crypto hacks of all time through 2026, breaks down the attack vectors that made them possible, attributes the ones traced back to nation-state actors like North Korea's Lazarus Group, and analyzes which stolen funds were ever recovered. We will also look at how blockchain forensics firms like Chainalysis and on-chain investigators like ZachXBT track stolen assets across mixers, bridges and centralized exchanges. By the end you will have a complete picture of where crypto security has been, where it stands today and what attack patterns to watch for going forward.

The numbers are staggering. The single biggest hack in history, the Bybit cold wallet breach of February 2025, drained $1.5 billion in a single attack. That one incident exceeded the entire annual hack total for 2023. Yet it was just one chapter in a much longer story that begins with Mt. Gox in 2011 and continues with new variations of the same fundamental vulnerabilities being exploited every year.

The Top 15 Biggest Crypto Hacks of All Time

This ranking is based on the USD value of assets stolen at the time of the incident. Where post-incident recoveries occurred, the original loss figure is used. The list is updated through 2026 and includes both centralized exchange compromises and decentralized protocol exploits.

#1 Bybit ($1.5B, February 2025): The Largest Hack in History

On February 21, 2025, the centralized exchange Bybit experienced what is now the largest single cryptocurrency theft ever recorded. Attackers manipulated the user interface during a routine signing operation on a Safe multisig wallet, tricking signers into approving a transaction that transferred control of one of Bybit's Ethereum cold wallets to an address controlled by the attackers. Within hours, roughly 401,000 ETH worth approximately $1.5 billion at the time were drained.

The attack was not a smart contract bug in the traditional sense. The Safe contract itself worked exactly as designed. The exploit happened at the human interface layer. Signers saw what looked like a legitimate transaction in their browser but the underlying call data had been modified by malicious code injected through a compromised Safe front-end. This is sometimes called a blind signing attack and it represents a new generation of threats where the smart contract is sound but the interface used to sign transactions is compromised.

Within 24 hours, the FBI, Chainalysis, Elliptic, and ZachXBT had publicly attributed the attack to Lazarus Group, the North Korean state-sponsored hacking collective. The stolen ETH was rapidly split across thousands of intermediary wallets, swapped through DEXs, and funneled into mixers including Tornado Cash and the Bitcoin-focused eXch swap service. Bybit's CEO Ben Zhou publicly confirmed the loss within hours, opened an emergency bridge loan from major counterparties, and pledged that customer funds would be made whole. The exchange did honor that pledge and resumed full withdrawals within 72 hours, a response widely praised as best-in-class crisis management.

#2 Ronin Network ($625M, March 2022)

The Ronin bridge was the sidechain that powered Axie Infinity, the most successful play-to-earn game in crypto history. In March 2022, Lazarus Group operatives social-engineered their way into Sky Mavis through a fake LinkedIn job offer to one of the company's senior engineers. The engineer downloaded what appeared to be a job description PDF, which actually contained malware that gave the attackers persistent access to Sky Mavis infrastructure.

From there, the attackers harvested four of the nine validator key credentials needed to sign withdrawals from the Ronin bridge. They also discovered that a fifth validator, controlled by the Axie DAO, had been configured to auto-sign transactions during a previous high-traffic period and that configuration had never been reverted. With five of nine signatures under their control, they minted withdrawal transactions for 173,600 ETH and 25.5M USDC, totaling roughly $625 million.

The breach went undetected for six days. Ronin only discovered the theft when a user attempted to withdraw 5,000 ETH and the transaction failed because the bridge was empty. The U.S. Treasury's OFAC sanctioned the receiving wallet and formally attributed the attack to Lazarus in April 2022. Almost none of the stolen funds were recovered. Sky Mavis and Binance jointly funded a $150M reimbursement pool for affected users.

#3 Poly Network ($611M, August 2021): The Hack That Got Returned

Poly Network is a cross-chain interoperability protocol. In August 2021, a single attacker exploited a vulnerability in how the protocol verified cross-chain messages, effectively letting them mint themselves manager privileges on the Poly contract and drain $611 million across Ethereum, BSC and Polygon.

Then something unexpected happened. The attacker, who later identified themselves as "Mr White Hat," voluntarily returned almost the entire stolen amount over the following two weeks. They publicly stated that the hack was performed "for fun" and to expose the vulnerability. Poly Network even offered the attacker a $500,000 bug bounty and a job as their chief security advisor. The attacker accepted the bounty but did not take the job. This remains the most unusual outcome in major crypto hack history. Almost every other case in this list ended with attackers permanently disappearing with the funds.

#4 BNB Chain Bridge ($570M, October 2022)

The BNB Chain native cross-chain bridge, known as the BSC Token Hub, was exploited through a forged Merkle proof. The attacker discovered a flaw in how the bridge's IAVL proof verification handled certain edge cases. By crafting a malicious proof that the bridge accepted as valid, they minted themselves 2 million BNB worth approximately $570 million at the time. This is a classic example of a bridge exploit where the cryptographic verification of cross-chain messages is fundamentally broken.

The attack would likely have resulted in a much larger loss but BNB Chain's validator set coordinated an emergency network halt within hours of the exploit. By stopping block production, they froze approximately $430 million of the stolen funds on BNB Chain. The remaining $137 million had already been bridged to other chains and was largely unrecoverable. The incident highlighted both the risks of permissioned validator sets (the network could be halted at all) and the benefits (the loss was capped at a fraction of what it could have been).

#5 Coincheck ($530M, January 2018)

Tokyo-based Coincheck stored approximately 523 million NEM tokens in a single hot wallet without multi-signature protection. In January 2018, attackers compromised the wallet and transferred the entire balance, worth roughly $530 million, to 11 different addresses they controlled. The NEM Foundation tagged the stolen coins on-chain and asked exchanges to refuse them, but most of the funds were laundered through dark markets and untraceable swap services before any meaningful intervention could occur.

Coincheck eventually reimbursed affected users out of its own corporate funds, an outcome that was rare at the time and helped restore some trust in Japanese exchanges. The Coincheck hack remains the single largest cryptocurrency theft from a Japanese exchange and led directly to stricter Japanese FSA regulations requiring cold storage of customer assets, mandatory security audits, and segregation of operational and customer funds.

#6 Mt. Gox ($470M, 2011-2014)

Mt. Gox is the original crypto hack and arguably the most consequential. Based in Tokyo, Mt. Gox handled roughly 70% of all global Bitcoin trading volume at its peak in 2013. Over a multi-year period beginning as early as 2011, attackers exploited weak security and almost certainly internal complicity to systematically drain approximately 850,000 BTC from the exchange's wallets, worth around $470 million at 2014 prices. At today's BTC price, the loss represents tens of billions of dollars.

Mt. Gox declared bankruptcy in February 2014. The case became one of the longest-running insolvency proceedings in financial history. Civil rehabilitation distributions to creditors finally began in 2024 and continued into 2025, more than a decade after the original collapse. The Mt. Gox case set the template that almost every crypto exchange would follow: the warning signs were public, the failures were systemic, and the recovery process was tortuously slow. Lessons from Mt. Gox still inform exchange custody practices today.

#7 FTX ($415M Post-Bankruptcy Drain, November 2022)

FTX is more famous as a fraud than as a hack, but on the night of November 11, 2022, hours after the exchange filed for Chapter 11 bankruptcy, an unknown attacker drained approximately $415 million from FTX wallets. The new bankruptcy administrators publicly confirmed the loss the next day. Investigations later attributed the attack to former FTX employees or contractors who retained access to private key material during the chaos of the bankruptcy filing.

In 2024, U.S. federal prosecutors indicted three individuals in connection with the FTX drain, charging them with conspiracy to commit wire fraud and aggravated identity theft. The case is unusual because it represents both a hack and the aftermath of a corporate failure colliding at the worst possible moment for affected users.

#8 Wormhole ($320M, February 2022)

Wormhole is a bridge between Solana and Ethereum. In February 2022, an attacker exploited a flaw in how the bridge verified guardian signatures. They submitted a malicious VAA (verifiable action approval) with a forged signature, tricking the bridge into believing 120,000 wETH had been locked on Ethereum when it had not. The bridge then minted 120,000 wETH on Solana to the attacker, who promptly swapped it for SOL and other assets.

The unique twist in the Wormhole story is the bailout. Jump Crypto, one of the largest backers of the Wormhole project, immediately deposited $320 million of their own ETH into the bridge to backstop the loss. This was the largest private bailout in crypto history at the time. It meant that no Wormhole user actually lost funds. The cost was borne entirely by Jump. The attacker was never publicly identified.

#9 DMM Bitcoin ($305M, May 2024)

Japanese exchange DMM Bitcoin lost approximately 4,503 BTC worth $305 million in May 2024 due to a private key compromise. The exchange's parent company injected emergency capital to reimburse affected users. Japanese police later collaborated with the FBI and announced attribution to Lazarus in December 2024, identifying social engineering of a third-party wallet service provider as the initial intrusion vector. DMM Bitcoin announced in late 2024 that it would wind down its operations, with customer accounts transferred to SBI VC Trade.

#10 KuCoin ($281M, September 2020)

KuCoin's hot wallets were drained on September 25, 2020, in an attack that initially looked devastating but ended up being one of the best recovery stories in crypto history. The attackers stole approximately $281 million across Bitcoin, Ethereum, and a wide range of ERC-20 tokens. KuCoin worked with project teams to freeze tokens that had not yet been swapped, blacklisted attacker addresses, and coordinated forks for some tokens where freezing was not possible. The result was that approximately 84% of the stolen value was eventually recovered.

#11 Nomad Bridge ($190M, August 2022)

The Nomad bridge hack is unique because it became a free-for-all. After a routine smart contract upgrade introduced a bug that caused the bridge to accept any message as valid, the first attacker drained a portion of the funds, and then dozens of copycats noticed the same exploit on Etherscan, copied the transaction, and replayed it with their own addresses substituted in. Within hours, roughly $190 million was drained by hundreds of different addresses, ranging from sophisticated MEV bots to first-time exploiters who simply changed a single field in a transaction. Some white hats also drained funds proactively to return them later.

#12 Beanstalk ($182M, April 2022)

Beanstalk Farms was a stablecoin protocol governed by token-weighted voting. In April 2022, an attacker took out a flash loan to acquire a supermajority of governance tokens, voted through a malicious proposal that transferred all protocol funds to an address they controlled, and repaid the flash loan, all within a single transaction. The exploit drained $182 million. This is the canonical example of a governance flash loan attack and led to widespread adoption of snapshot-based voting and time-locked proposal delays across DeFi.

#13 Wintermute ($160M, September 2022)

Wintermute is a major crypto market maker. In September 2022, attackers exploited a vulnerability in the Profanity vanity address generator that the firm had used to create one of its operational wallets. Profanity used insufficient entropy, making certain vanity addresses crackable through brute force. The attackers reverse-engineered the private key for a Wintermute admin address and drained $160 million from the firm's DeFi vault.

#14 Cream Finance ($130M, October 2021)

Cream Finance is a money market protocol that suffered three separate exploits in 2021 alone. The October incident was the largest, with attackers using a complex flash loan strategy to manipulate the price oracle for yUSD, allowing them to borrow far more from Cream than their collateral was actually worth. The exploit drained $130 million. Cream never fully recovered and the protocol slowly wound down operations over the following years.

#15 Multichain ($126M, July 2023)

The Multichain (formerly AnySwap) collapse remains one of the strangest stories in crypto. In July 2023, $126 million in user assets were drained from Multichain bridge contracts under bizarre circumstances. The protocol's CEO had reportedly been detained by Chinese authorities and held all the MPC (multi-party computation) keys to the bridge. When he was unavailable, the keys could not be rotated or revoked, and someone (possibly the authorities, possibly a hacker, possibly the team itself) drained the bridge. The protocol shut down permanently and most affected users never recovered their funds.

Attack Vector Taxonomy: The Five Ways Crypto Gets Hacked

Across all 15 incidents and the hundreds of smaller hacks that occur every year, almost every exploit fits into one of five attack vector categories. Understanding these categories helps you evaluate the risk of any platform you interact with.

Lazarus Group: The North Korean State Actor

If you read enough hack post-mortems, one name keeps appearing. Lazarus Group is a hacking collective attributed to the Reconnaissance General Bureau of North Korea. Multiple intelligence agencies including the FBI, CISA, NCSC and South Korea's NIS have publicly named Lazarus as a state-sponsored actor whose operations finance North Korea's weapons programs in the face of international sanctions. The U.S. Treasury's OFAC has sanctioned numerous wallets and mixers used by the group.

Lazarus has been attributed to at least three of the top 15 hacks in this article: Bybit ($1.5B), Ronin ($625M), and DMM Bitcoin ($305M). They are also believed responsible for the Atomic Wallet hack ($100M, June 2023), the Stake.com hack ($41M, September 2023), the WazirX hack ($235M, July 2024), and numerous smaller incidents. The total amount stolen by Lazarus across all crypto operations exceeds $3 billion and they are believed to fund roughly half of North Korea's missile development budget through these thefts.

Lazarus operations follow a recognizable playbook. The intrusion typically starts with social engineering, often a fake job offer on LinkedIn that delivers malware in a "coding challenge" PDF or compressed archive. The malware establishes persistent access and gradually escalates privileges within the target organization until the attackers can sign transactions or extract private keys. Once funds are stolen, they are fragmented across thousands of intermediary addresses, swapped through DEXs to break linkages with the original transactions, and laundered through mixer services before being converted to fiat through OTC desks in jurisdictions with weak compliance.

Bridges: The Number One Attack Surface

Of the top 15 hacks, seven involved cross-chain bridges in some form: Ronin, Poly Network, BNB Bridge, Wormhole, Nomad, and Multichain. Bridges represent more than $2.5 billion in stolen funds, roughly a quarter of all major crypto theft losses. This concentration is not a coincidence. Bridges are uniquely difficult to secure for several structural reasons.

First, bridges hold large amounts of locked collateral on one chain backing wrapped tokens on another. This makes them attractive targets compared to single-chain protocols. Second, bridges typically rely on a set of validators or guardians to attest that messages from one chain are valid on another. If enough of those validators are compromised, the bridge can be drained. Third, the cryptographic verification logic for cross-chain messages is complex and bug-prone, leading to incidents like Wormhole's signature verification flaw and BNB's Merkle proof exploit. For a deeper look at how this attack surface works, see our dedicated breakdown of the bridge hack phenomenon.

CEX vs DeFi vs Bridge: How the Losses Break Down

The popular narrative is that DeFi is dangerous and centralized exchanges are safe. The data tells a more nuanced story.

Centralized exchanges account for the largest single losses and remain the highest-value targets. DeFi protocols experience more frequent but generally smaller exploits. Bridges occupy a category of their own, sitting between centralized infrastructure and decentralized contracts, often with the worst attributes of both. For an investor or trader, this means the question is not "is DeFi safer than CEX." The question is which specific platforms have done the security work to harden themselves against the specific attack vectors that apply to their architecture.

Recovery Outcomes: Returned, Partial, Never

Once funds are stolen, the chances of recovery vary enormously based on the attacker's identity, the laundering path used, and how quickly investigators can move. Across the top 15 hacks, the outcomes break down roughly as follows.

The pattern is clear. State-actor hacks are almost never recovered because the attackers have the infrastructure and time to launder funds through chains of mixers and OTC desks in non-cooperative jurisdictions. Exchange hacks where the exchange survives often result in user reimbursement out of corporate funds even when the actual stolen amount is unrecoverable. DeFi exploits sometimes result in partial returns when the exploiter is identified and threatened with legal action.

Blockchain Forensics: How Stolen Funds Are Tracked

Public blockchains create an unprecedented forensic trail. Every transaction is permanently recorded. The challenge is not finding the data, it is interpreting it across millions of addresses and connecting on-chain activity to real-world identities. A handful of firms and individuals have become world experts at this work.

Chainalysis is the largest blockchain analytics company and the primary tool used by law enforcement worldwide. They maintain comprehensive databases of address attribution, clustering wallets that belong to the same entity through transaction pattern analysis, and have direct relationships with exchanges that allow them to identify cash-out points where stolen funds enter the fiat system.

Arkham Intelligence offers a more retail-facing platform that combines on-chain analytics with a bounty system. Users can post rewards for identifying the owners of specific wallets, creating a crowdsourced attribution layer that has helped uncover several major hack attributions.

ZachXBT is the most prominent independent blockchain investigator. He has been credited with first attribution on several Lazarus operations, including providing key intelligence in the Bybit hack within hours of the incident. His investigative threads on social media have led to law enforcement action and have rescued user funds in multiple cases.

Elliptic and TRM Labs are other major commercial forensics firms that work primarily with exchanges, financial institutions, and government agencies. Their automated screening tools are part of why most regulated exchanges now refuse deposits from sanctioned addresses or known mixer outputs.

How Exchanges Have Hardened Their Security

Each major hack has driven structural changes across the industry. After Mt. Gox, exchanges adopted proof of reserves and cold storage practices. After Coincheck, multi-signature wallets became standard. After the Bybit hack, several major exchanges including OKX and Binance accelerated implementation of additional verification layers, hardware-backed signing for cold wallet operations, and mandatory simulation of every transaction in a sandbox before signing.

Bybit's own response to its hack has become a case study in exchange recovery. Within 12 hours of the breach, the CEO had publicly disclosed the loss, opened a bridge loan facility with major counterparties, frozen withdrawals only briefly, and committed to making all customers whole. Within 72 hours, full operations had resumed and most users had successfully withdrawn funds. This response demonstrated that exchange resilience now matters as much as prevention. Even a top-tier exchange with billion-dollar reserves can be hacked. The question is how quickly and transparently they handle the aftermath.

Modern exchange security stacks typically include cold storage for at least 90% of customer assets, hardware security modules for all signing operations, multi-signature schemes with geographic distribution of signers, transaction simulation and policy engines that flag unusual patterns before signing, mandatory dual control for high-value operations, regular third-party smart contract audit reviews of any custom contracts, and proof of reserves attestations published on a regular schedule.

Lessons Learned: What Every Investor Should Know

The history of crypto hacks teaches several lessons that apply directly to how you should manage your own holdings. First, exchange risk is real even at top-tier platforms. The Bybit hack proved that even the most security-conscious centralized exchanges can be compromised. If you hold large balances on any exchange, you should evaluate the exchange's incident response posture, not just their preventive controls.

Second, bridges are inherently riskier than single-chain holdings. If you bridge assets across chains, treat the bridge as the weakest link in the chain and minimize the amount and time you keep funds bridged. Use bridges only when actively transferring, not as a place to park assets.

Third, governance tokens are valuable and protocols you delegate to may be at risk of governance attacks if they have not implemented snapshot voting and timelocks. Before participating in any DAO governance, check whether the protocol has hardened against flash loan governance exploits.

Fourth, custody software and wallet front-ends matter. The Bybit hack happened at the UI layer of a multisig wallet that was itself secure. Always verify transaction call data through an independent source like a hardware wallet display before signing high-value operations.

Fifth, simple protections still work. Use a hardware wallet for any holdings you would not be comfortable losing. Enable withdrawal address allowlisting on exchanges. Use unique passwords and hardware security keys for exchange accounts. These basic measures would have prevented a large share of the smaller hacks that do not appear in this top-15 list but collectively cost users billions every year. For broader security context, see our breakdowns of common attack vectors like honeypot tokens, rug pull scams, MEV extraction, sandwich attack mechanics, 51% attack theory, and sybil attack patterns that all play roles in the broader security landscape.

The 2025 Turning Point: How Bybit Changed Everything

The Bybit hack of February 2025 was a watershed moment for the entire industry. The sheer scale of the loss, $1.5 billion in a single transaction, exceeded the total combined losses of any previous calendar year and forced a rapid reassessment of how cold storage operations are conducted across every major exchange. The fact that the exploit targeted the human-machine interface rather than the cryptographic core of the multisig system showed that traditional definitions of "secure" custody were inadequate.

In the months following the hack, several structural changes spread across the industry. Hardware wallet manufacturers including Ledger and Trezor accelerated their "clear signing" initiatives, which display human-readable interpretations of transaction call data on the device screen, making it harder to deceive signers with malicious UIs. The Safe project itself overhauled its front-end security architecture and introduced additional verification flows for high-value operations. Several institutional custodians began implementing mandatory air-gapped simulation of every transaction before signing.

On the laundering side, the Bybit case prompted unprecedented international cooperation. The eXch swap service, which had been used to launder a substantial portion of the stolen ETH, was shut down by European law enforcement in May 2025 after coordinated action by German and Dutch authorities. This was the most consequential takedown of a crypto laundering service since Bestmixer in 2019 and demonstrated that even nominally non-custodial swap services are not beyond reach of regulators.

Regulatory Aftermath

The cumulative impact of decades of crypto hacks has driven regulatory responses across nearly every major jurisdiction. Japan's FSA imposes some of the strictest custody requirements globally, born directly from the Mt. Gox and Coincheck experiences. The European Union's MiCA framework, which entered full force in 2024, mandates segregation of customer funds, cold storage requirements, and incident reporting for all licensed crypto-asset service providers. The U.S. has pursued enforcement through the SEC, CFTC, and DOJ, with OFAC sanctioning numerous wallets associated with Lazarus and other illicit actors.

Sanctions on mixing services have been particularly consequential. Tornado Cash was sanctioned by OFAC in August 2022, leading to court challenges that continue through 2026. The sanctions framework around Tornado Cash and other privacy tools has shaped both the technical evolution of mixers (toward more decentralized, sanction-resistant designs) and the compliance posture of every exchange and DeFi protocol that touches funds with potentially mixed history.

For ordinary users, the regulatory aftermath has produced a mix of benefits and friction. Customer fund segregation rules and proof of reserves attestations provide meaningful additional safety. Travel rule compliance and source-of-funds checks during deposits and withdrawals can be cumbersome but reduce the value of crypto as a laundering vehicle, which in turn slightly reduces the financial incentive for hacks.

Video: Inside the Biggest Crypto Hacks

A visual recap of the largest crypto thefts and how they were carried out.

Watch video on YouTube | Watch on YouTube

Frequently Asked Questions