Crypto hacks resulted in $482.6m stolen in Q1 2026

Cybercriminals stole about $482.6 million across 44 crypto-related attacks in the first quarter of 2026, with phishing and social engineering emerging as the most damaging tactics, according to a new industry report.

The findings were contained in Hacken’s Q1 2026 Blockchain Security & Compliance Report, which showed that attackers increasingly focused on human vulnerabilities rather than technical flaws in code.

A significant portion of the losses, about $306 million, came from phishing and social engineering schemes alone, making up nearly two-thirds of total stolen funds. Smart contract exploits accounted for $86.2 million, while access control failures, including compromised private keys and cloud systems, added another $71.9 million.

The report also highlighted a major single incident in January involving a compromised hardware wallet through social engineering, which led to the loss of about $282 million.

Human error overtakes code flaws as attackers shift strategy

Beyond the headline figures, the report noted a clear shift in cybercriminal behaviour, with fewer large-scale “mega hacks” and more frequent mid-sized attacks targeting individuals and operational systems.

Hacken said state-linked actors, particularly North Korea-linked groups, also remained active, using fake investment outreach and malware disguised as legitimate tools to steal tens of millions of dollars.

See also: U.S. moves to compensate victims of $4bn OneCoin scam, but recovery remains limited

The security firm warned that even audited projects were not immune, as attackers increasingly bypass technical defences by manipulating users and employees instead.

It also urged crypto platforms to strengthen continuous monitoring, employee training, and hardware wallet security, stressing that compliance must now function as an active layer of protection rather than a formality.

Experts cited in the report said the trend reflects a broader reality in the crypto ecosystem: while technical security is improving, human factors remain the weakest and most exploited link in the chain.