Crypto hacks and exploits resulted in losses of approximately $37.7 million in February 2026 and is the lowest monthly figure since March 2025, according to Certik data.
Phishing attacks accounted for $8.6 million of the total, while wallet compromise led the incident categories with $16.6 million in losses.
YieldBlox leads individual exploits with $10.6 million stolen, followed by IoTeX with $8.9 million and Foom with $2.3 million.
DeFi protocols suffered the largest losses by type at $14.4 million, while AI-related projects saw $8.9 million in theft.
Funds returned or frozen reached $11.3 million, representing approximately 30% of the total losses.
Portfolio compromise and price manipulation lead to losses in February
Wallet compromise incidents totaled $16.6 million in February and were the largest category of crypto hack losses.
Price manipulation attacks followed with $11.4 million in stolen funds, while phishing schemes drained $8.6 million from victims.
Code vulnerability exploits accounted for $5.1 million, with exit scams adding $2.1 million.
Instadapp had the biggest incident with $10.5 million, followed by EFX with $8.9 million. Kasm recorded $2.2 million in losses, while Initia saw $2.1 million stolen.
CryptoFarm experienced two separate incidents totaling $2.7 million combined.
More minor incidents included UCC and Hedgehog at $400,000 each, with Lending and SEI Token both posting $200,000 in losses.
DeFi protocols continued to see the highest mining activity with $14.4 million in losses across multiple incidents.
AI-related projects emerged as the second largest target with $8.9 million stolen. Gaming platforms lost $2.3 million, while programs to combat poisoning and wallet leaks totaled $2.7 million.
February Shows 60% Drop in Crypto Hacking Compared to January
February’s total of $37.7 million represents a sharp decline from typical monthly numbers seen throughout 2025.
Certik data shows that January and February 2026 both saw lower losses than most months in 2025.
The total number of incidents remained relatively stable month over month, according to the chart. The reduction in total losses comes from a decrease in high-value exploits rather than a decrease in attack frequency.
Phishing incidents showed similar trends in both months, with February’s $8.6 million matching January levels.
Total loss from exploits also declined from January’s high levels to $37.7 million in February.