CEFI和Defi Crypto Hacks启动了2025年的鲜明提醒：它仍然是黑客的游乐场

根据Cyber​​security Platform Immunefi的2025年1月30日的报告，仅1月份的加密货币黑客攻击就达到了惊人的7400万美元损失。

Cryptocurrency hacks reached $74 million in January alone, with centralized finance (CeFi) platforms bearing the brunt of the losses at 93%. A single CeFi platform, Phemex, lost a staggering $69.1 million due to attackers exploiting access keys.

仅一月份，Cryptocurrency Hacks就达到了7400万美元，集中式融资（CEFI）平台以93％的损失首当其冲。一个CEFI平台Phemex，由于攻击者利用访问键，损失了惊人的6,910万美元。

Meanwhile, 19 incidents targeted decentralized finance (DeFi) protocols, highlighting that even these protocols aren't off the hook. Binance's BNB Chain was the most frequently attacked blockchain, accounting for 50% of on-chain losses, followed by Ethereum with 25%.

同时，19例事件针对分散融资（DEFI）方案，强调即使这些协议也没有挂钩。 Binance的BNB链是最常攻击的区块链，占链上损失的50％，其次是以太坊，为25％。

This news comes as no surprise, given CeFi platforms' inherent vulnerabilities and the recent increase in targeted attacks. However, the extent of the losses and the involvement of both CeFi and DeFi protocols paint a concerning picture.

考虑到CEFI平台的固有漏洞以及目标攻击的最新增加，这一消息并不奇怪。但是，CEFI和DEFI协议的损失程度以及有关图片的影响。

As Immunefi's report highlights, CeFi platforms' vulnerabilities stem from their attempt to merge Web2 and Web3 technologies. This mishmash allows hackers to utilize well-established attack vectors like phishing and exploiting vulnerabilities in centralized architectures.

正如Immunefi的报告所强调的那样，CEFI平台的漏洞源于它们合并Web2和Web3技术的尝试。这种Mishmash允许黑客利用诸如网络钓鱼和利用集中式体系结构中的漏洞等良好的攻击媒介。

Moreover, the recent compliance push, which involves expanding operational surfaces to include layers of identity verification and centralized databases, has further opened doors for attackers to exploit.

此外，最近的合规性推动涉及扩大操作表面，以包括身份验证层和集中数据库，它进一步打开了攻击者的大门。

On the other hand, DeFi protocols' vulnerabilities largely arise from the breakneck speed at which they're developed and deployed.

另一方面，Defi协议的漏洞在很大程度上是源于开发和部署的突破速度。

Developers often prioritize launching products quickly to join the race for funding, liquidity, and investor attention, which leaves behind a backlog of vulnerabilities that are exploited post-launch.

开发人员通常会优先考虑发射产品，以加入资金，流动性和投资者的关注竞赛，这留下了漏洞的积压，这些脆弱性是被利用后发出的。

According to Immunefi's report, BNB Chain and Ethereum Hacks remained at the center of crypto exploit incidents in January. Both chains, being the most popular, host thousands of projects, creating sprawling digital ecosystems that are exponentially more complex than smaller blockchains.

根据Immunefi的报告，BNB连锁店和以太坊黑客在一月份仍处于加密货币剥削事件的中心。这两个连锁店都是最受欢迎的，拥有数千个项目，创造了庞大的数字生态系统，这些生态系统比较小的区块链呈指数级复杂。

This complexity introduces an endless stream of bugs and vulnerabilities at both the smart contract and protocol levels. Hackers don’t need to break into the entire chain—they just need one poorly written contract to exploit a dApp.

这种复杂性在智能合约和协议级别上引入了无尽的错误和漏洞。黑客不需要闯入整个链条，他们只需要一份书面合同来利用DAPP即可。

Both networks have doubled down on security initiatives; Ethereum introduced account abstraction while BNB Chain recently implemented the BEP-171, a hard fork designed to enhance chain security.

这两个网络都在安全计划上翻了一番。以太坊引入了帐户抽象，而BNB链最近实施了BEP-171，这是一种旨在增强链条安全性的硬叉。

Immunefi reported 19 security incidents in DeFi space, including notable protocol exploits pointing to lingering vulnerabilities in nascent projects. While DeFi accounted for only 6.5% of total losses, this smaller figure is misleading, it only means DeFi flies under the radar until a catastrophic exploit occurs

Immunefi报告了Defi空间中的19起安全事件，其中包括指向新生项目中脆弱性的著名协议利用。虽然Defi仅占总损失的6.5％，但这个较小的数字具有误导性，但仅意味着在雷达下进行Defi蝇，直到发生灾难性的利用

Collectively, these crypto hacks in January served as a stark reminder that both CeFi and DeFi platforms still have a long way to go in terms of security. Despite the smaller losses compared to January 2024, the frequency and scale of these incidents remain a cause for concern.

总的来说，这些加密货币骇客在一月份的明显提醒，CEFI和DEFI平台在安全方面还有很长的路要走。尽管与2024年1月相比，损失较小，但这些事件的频率和规模仍然是引起关注的原因。

As the crypto industry continues to evolve and astronomical sums of money are at stake, it's imperative that both users and platforms prioritize security measures to minimize the impact of these attacks.

随着加密货币行业继续发展，金钱的天文资金受到威胁，因此，用户和平台必须优先采取安全措施，以最大程度地减少这些攻击的影响。