PANews reported on July 1 that according to Beosin Alert monitoring and early warning, the total losses in the Web3 field due to hacker attacks, phishing scams and project party Rug Pull reached 1.54 billion US dollars in the first half of 2024. Among them, there were 78 major attack incidents with a total loss of approximately 1.193 billion US dollars; 64 project party Rug Pull incidents with a total loss of approximately 119 million US dollars; and the total loss of phishing scams was approximately 232 million US dollars.
There were three security incidents with losses exceeding $100 million in the first half of 2024. May had the highest loss in the first half of 2024, with a total loss of $450 million.
In terms of the types of projects attacked, CEX suffered the highest losses. The four attacks on CEX caused a total loss of approximately US$392 million, accounting for 32.8% of the total loss from all attacks.
In terms of the amount of losses on each chain, Ethereum is still the chain with the highest amount of losses and the most attacks. 32 attacks on Ethereum caused a loss of $470 million, accounting for 39.4% of the total losses.
In terms of attack methods, there were 22 private key leakage incidents in the first half of the year, causing losses of US$894 million, accounting for about 75% of the total attack losses, which is the highest proportion of attack types.
Looking at the flow of funds, approximately $470 million (39.3%) of the stolen funds were frozen or recovered. This is a significant improvement from 2023.
Among the 78 attacks in the first half of the year, 43 were still caused by the exploitation of contract vulnerabilities. It is recommended that project parties seek audits from professional security companies before going online.