In February 2026, the cryptocurrency sector experienced a dramatic decline in hack-related losses, with total damages ranging between $26.5 million and $35.7 million, marking the lowest monthly figure since March 2025. This represents a staggering 69.2% month-over-month drop from January’s $86 million and a 98.2% year-over-year decline compared to February 2025, which included the massive $1.5 billion Bybit breach.
February’s Loss Breakdown: What Went Wrong?
February’s relatively low losses were concentrated in just 15 major incidents, with two exploits accounting for the lion’s share:
- YieldBlox.finance suffered a $10 million oracle manipulation attack targeting its DAO-managed lending pool on the Stellar network.
- IoTeX endured a private key compromise that led to losses estimated between $8.9 million (PeckShield) and nearly $9 million (CertiK), though IoTeX’s own estimate was closer to $2 million.
Other notable incidents included:
– CrossCurveFi: ~$3 million lost
– FOOMCASH: ~$2.2–2.3 million
– Moonwell: ~$1.8 million
Diverging Estimates: PeckShield vs. CertiK
- PeckShield reported total losses of $26.5 million across 15 incidents.
- CertiK, however, estimated higher losses at $37.7 million, attributing the difference to broader inclusion of phishing and wallet compromise incidents.
CertiK’s breakdown:
– Wallet compromises: $16.6 million
– Price manipulation: $11.4 million
– Phishing: $8.6 million
– Code vulnerabilities: $5.1 million
– Exit scams: $2.1 million
PeckShield also highlighted phishing’s continued impact, attributing $8.5 million of February’s losses to such attacks.
Why the Sharp Decline?
Several factors contributed to the steep fall in losses:
- Absence of mega-hacks: Unlike February 2025’s Bybit breach, no billion-dollar exploits occurred this month.
- Improved security protocols: Enhanced risk management, AI-powered code audits, real-time monitoring, and stronger counterparty verification helped reduce vulnerabilities.
- Market conditions: A drop in Bitcoin’s price below $70,000 early in the month may have reduced speculative activity and exploit opportunities.
Still a Threat: Phishing and Wallet Compromises
Despite the overall improvement, phishing and wallet compromise remain significant threats:
- PeckShield attributed $8.5 million in losses to phishing.
- CertiK’s data shows wallet compromises were the largest category at $16.6 million, followed by phishing at $8.6 million.
These figures underscore that while protocol-level security may be improving, user-level vulnerabilities continue to be exploited.
Context: January’s High Losses
January 2026 was a stark contrast, with approximately $86 million lost across multiple DeFi hacks.
This makes February’s 69.2% month-over-month reduction even more striking.
Broader Perspective: 2025 and Beyond
- 2025 was a record year for crypto theft, with over $2.1 billion stolen, including the $1.5 billion Bybit hack.
- North Korean-linked Lazarus Group was implicated in the Bybit breach, highlighting the ongoing threat from state-sponsored actors.
What This Means for the Crypto Ecosystem
February’s low losses suggest a maturing security landscape, but the persistence of phishing and wallet compromises signals that user-level defenses remain critical. Protocols may be getting safer, but individual users and smaller projects continue to be vulnerable.
Final Thoughts
February 2026 stands out as a rare bright spot in crypto security, with hack-related losses dropping to their lowest level in nearly a year. Yet, the continued prevalence of phishing and wallet compromise serves as a reminder: security is only as strong as its weakest link.
Disclaimer: This article is for informational purposes only and does not constitute financial or investment advice. Cryptocurrency investments carry significant risk, including the possibility of total loss. Past performance does not guarantee future results. Always conduct your own research and consult a qualified financial advisor before making investment decisions.