
Crypto hacks and exploits resulted in approximately $37.7 million in losses during February 2026 and were the lowest monthly figure since March 2025 according to Certik data.
Summary
- Crypto hacks totaled $37.7M in February, lowest since March 2025.
- Wallet compromises led losses at $16.6M, ahead of phishing and exploits.
- About 30% of stolen funds were frozen or recovered during February.
Phishing attacks accounted for $8.6 million of the total, while wallet compromise led incident categories with $16.6 million in losses.
YieldBlox topped individual exploits with $10.6 million stolen, followed by IoTeX at $8.9 million and Foom at $2.3 million.
DeFi protocols suffered the largest losses by type at $14.4 million, while AI-related projects recorded $8.9 million in thefts.
Funds returned or frozen reached $11.3 million, representing approximately 30% of total losses.
Wallet compromise and price manipulation drive February losses
Wallet compromise incidents totaled $16.6 million across February and were the largest crypto hacks loss category.
Price manipulation attacks followed with $11.4 million in stolen funds, while phishing schemes drained $8.6 million from victims.
Code vulnerability exploits accounted for $5.1 million, with exit scams adding $2.1 million.
Instadapp posted the largest single incident at $10.5 million, followed by EFX at $8.9 million. Kasm recorded $2.2 million in losses, while Initia saw $2.1 million stolen.
CryptoFarm experienced two separate incidents totaling $2.7 million combined.
Smaller incidents included UCC and Hedgehog at $400,000 each, with Lending and SEI Token both posting $200,000 in losses.
DeFi protocols continued to see the highest exploit activity with $14.4 million in losses across multiple incidents.
AI-related projects emerged as the second-largest target with $8.9 million stolen. Gambling platforms lost $2.3 million, while address poisoning and wallet drainer schemes combined for $2.7 million.
February shows 60% crypto hack drop from January
The $37.7 million February total is a sharp drop from typical monthly figures seen throughout 2025.
Certik data shows January and February 2026 both posted lower losses than most 2025 months.
Total incidents remained relatively stable month-over-month based on the chart. The reduction in total losses comes from fewer high-value exploits rather than decreased attack frequency.
Phishing incidents showed similar patterns across both months, with February’s $8.6 million matching January levels.
Exploit total loss also dropped from January’s elevated levels to February’s $37.7 million.

