加密宇宙發生了財務地震

在2025年第一季度，黑客撤銷了16.3億美元，打破了所有記錄。深入研究了危機，使危機動搖了下放的基礎。

The crypto universe is used to mind-boggling figures, but the first quarter of 2025 for web3 theft has reached astronomical proportions: $1.63 billion in crypto was stolen in Q1, shattering all previous records. To put this in perspective, the entire year of 2024 saw $1.1 billion in web3 theft.

加密貨幣宇宙被用來令人難以置信的數字，但是2025年的Web3盜竊案達到了天文比例：16.3億美元的加密貨幣在Q1中被盜，破壞了所有以前的記錄。考慮到這一點，2024年的整個年份在Web3盜竊案中看到了11億美元。

This staggering sum is largely due to the titanic attack on Bybit, which alone accounts for 92% of the total losses. But beyond this brutal statistic lies a more nuanced reality: flaws are exploited, ecosystems are vulnerable, and resilience is fragile.

這筆驚人的金額在很大程度上是由於對Bybit的泰坦尼克號攻擊，僅佔總損失的92％。但是，除了這種殘酷的統計數據外，還有一個更加細微的現實：漏洞被剝削，生態系統脆弱，彈性是脆弱的。

A Sledgehammer Blow

大錘打擊

The attack on Bybit, which occurred in February 2025, is like a detonation in the tidy narrative of crypto winter. With $1.53 billion vanished, this feat is one of the boldest in crypto history. To understand its impact, we must return to the figures: in January, losses amounted to $87 million, already an alarming sum.

對2025年2月發生的對Bybit的襲擊就像是加密冬季整潔的敘述中的一種爆炸。這項壯舉是15.3億美元的消失，是加密歷史上最大膽的壯舉之一。要了解其影響，我們必須回到數字：一月份的損失為8700萬美元，已經令人震驚。

Then February arrived, transforming a worrying trend into a systemic catastrophe. Bybit wasn’t just hacked; it was dismantled, exposing structural vulnerabilities that many believed unlikely.

然後2月到來，將令人擔憂的趨勢轉變為系統性的災難。拜百比不僅被黑客入侵。它被拆除，暴露了許多人認為不可能的結構脆弱性。

However, this carnage did not eclipse other attacks. Also in February, Infini suffered $50 million in theft, zkLend sustained $9.5 million in losses, and Ionic was hit for $8.5 million. These incidents, overshadowed by Bybit, showcase a resurgence of diverse targets: DeFi protocols, lending platforms, trading infrastructures.

但是，這屠殺並未蝕其他攻擊。同樣在2月，Infini遭受了5,000萬美元的盜竊，Zklend遭受了950萬美元的損失，而Ionic的損失為850萬美元。這些事件被BYBIT掩蓋，展示了各種目標的複興：DEFI協議，貸款平台，交易基礎設施。

Hackers are diversifying their strategies, shifting from exploiting smart contracts to manipulating institutional wallets. They are deploying increasingly sophisticated techniques to siphon funds from centralized exchanges and institutions.

黑客正在使他們的策略多樣化，從利用智能合約轉變為操縱機構錢包。他們正在從集中的交易所和機構中向虹吸資金部署越來越複雜的技術。

March brought a semblance of respite, with a 97% drop in thefts, which reached a minimal $33 million. Some funds were even returned, like the $4.5 million recovered by 1inch after tough negotiations with hackers. But this relative calm should not deceive: it is less about protocols improving security than a tactical pause. Hackers digest their loot while protocols and institutions hastily strengthen their shields.

3月帶來了喘息的表現，盜竊案下降了97％，達到3,300萬美元。甚至還退還了一些資金，例如在與黑客進行艱難的談判之後，1英寸收回了450萬美元的資金。但是，這種相對平靜不應該欺騙：與戰術停頓相比，協議提高安全性的不小。黑客消化了他們的戰利品，而協議和機構匆匆加強了他們的盾牌。

Coins used in scams

騙局使用的硬幣

The report also provides a breakdown of the cryptocurrencies targeted by hackers in the first quarter of 2025. Of the $1.63 billion stolen, $1.5 billion was in stablecoins, mainly Tether (USDT) and USD Coin (USDC). This preference for stablecoins is likely due to the fact that they are easily liquidated on the open market.

該報告還提供了黑客在2025年第一季度針對的加密貨幣。這種對穩定幣的偏愛很可能是由於它們在公開市場上很容易被清算。

Of the remaining $132 million, $117 million was in Bitcoin (BTC), and smaller amounts were stolen in other cryptocurrencies, including Ether (ETH), Solana (SOL), and Axie Infinity (AXS).

在剩下的1.32億美元中，比特幣（BTC）的1.17億美元在其他加密貨幣中被盜，包括Ether（Eth），Solana（Solan）（Sol）和Axie Infinity（AXS）。

The report notes that the majority of the stolen cryptoassets were used in "plus token" and "HYIP" scams. Plus tokens are a type of cryptocurrency scam that promises investors high returns with low investment amounts, typically entices investors with the prospect of becoming an "early user" of a new cryptocurrency, and relies on a multi-level marketing scheme to recruit new investors. HYIPs, or High Yield Investment Programs, are investment scams that promise unrealistically high returns over short periods of time. They typically create a website or social media presence to promote their services and attract investors.

該報告指出，大多數被盜的加密貨物都用於“ Plus token”和“ Hyip”騙局中。另外，令牌是一種加密貨幣騙局，承諾投資額較低的投資者高收益，通常會誘使投資者成為新的加密貨幣的“早期用戶”，並依靠多層營銷計劃來招募新的投資者。 HYIP或高收益投資計劃是投資騙局，他們承諾在短時間內不切實際的高收益。他們通常會創建網站或社交媒體的影響力，以促進他們的服務並吸引投資者。

The report's findings highlight the ongoing threat of cryptocurrency scams and the importance of investors being aware of the risks. Investors are advised to be skeptical of investment opportunities that promise unusually high returns and to conduct thorough research before investing in any cryptocurrency project.

該報告的發現凸顯了加密貨幣騙局的持續威脅以及投資者意識到風險的重要性。建議投資者對投資機會持懷疑態度，這些投資機會有望在投資任何加密貨幣項目之前進行異常高的回報並進行徹底的研究。