2022 In the first half of Web3 The ecological losses due to hacker attacks exceed 20 Billion dollars , Compare with 2021 Annual loss of 15.5 Billion dollars ,2022 The loss in the first half of the year has exceeded 2021 Total of the whole year .2022 year Q2 Public security events 49 rise , The total amount of loss exceeds 7 Billion dollars .

The most common attack method ：2022 year Q2 The most common attack method is contract vulnerability exploitation 、 Lightning loan attack and fishing attack . The most vulnerable project type ：DeFi It is still the most frequently attacked project type , about 75% The attack took place in DeFi field . The most attacked chain ： About this quarter 4 Billion 1345 The loss of million dollars occurred in Ethereum. The chain with the highest attack frequency is BNB Chain, Reached 28 Time . The most frequently attacked month ：2022 year Q2,4 Month is the most active month for hacker attacks , 5 The month and 6 Hacking activities showed a downward trend in January . Audit situation ： In the attacked project , have only 43% The project has been audited . Policies and regulations ： With Web3 The development of ecology , Governments have also promulgated a series of policies , Among them, the most influential is the executive order on the regulatory framework of cryptocurrency signed by the Biden government of the United States , And the European Union MiCA bill .

Contract exploits

Q2 Quarterly contract vulnerability exploitation , The loss caused is more than 5.3 Billion dollars , The number of attacks reached 40 Time . And Q1 comparison , The amount of loss decreased by about 56.7%, The main reason for this difference is Ronin Attacks on the Internet , cause 6.24 Billion dollars in losses , Occupy Q1 More than half of the loss of vulnerability exploitation . But it's amazing , The number of attacks has not decreased , Actually from 32 Times increased to 40 Time .

Lightning attack

Flashloan Still Web3 One of the main pain points of safety , This quarter has 28 The attack involved lightning loans , A total loss of 310,002,694 dollar . And Q1 comparison , The number of attacks and the amount of attack losses have increased significantly . The number of attacks ranged from Q1 Of 15 Times increased to the second quarter 28 Time , Added 46.4%, The amount of capital lost increased from... In the first quarter 13,978,452 The dollar increased to... In the second quarter 310,002,694 dollar , Added 2000% above .

Phishing attack

2022 year Q2 The frequency of phishing attacks has also increased . stay Q1 have only 106 Time , stay Q2 The number of attacks doubled to nearly 300 Time . Besides ,Discord It has become the carrier of most fishing attacks . One side , This shows that it is the preferred cryptocurrency / NFT Social scene . But on the other hand , Relevant reports also point out its long-standing security problems .

Rogpulls

Rugpulls Still very serious , This quarter happened 91 Time , It's caused 39,421,648 The loss of dollars . Although this is an increase over the first quarter 18%, But with 2021 comparison Q2 This classification attack has decreased . This is likely to be the result of a sustained bear market . After going through Q2 Several major events happened , Such as Three Arrows Capital Bankruptcy and Terra Collapse of , Make investors more cautious about the use of assets in their hands .

Crypto war

5 month 13 Japan , The second largest economy in the formerly decentralized financial world Terra Completely failed in this unprecedented encryption storm . from 5 month 8 Day to day 5 In the day time ,Terra The market value has increased from nearly 250 Billion dollars fell to less than 10 Billion .Terra Main currency Luna From the original 80 The dollar fell to 0.00005, Basic zero ,Terra Blockchain has been temporarily closed , The algorithm stabilizes the currency UST Fell to 0.17 dollar . With Luna Collapse of , Cryptocurrency market has completely entered a bear market , Also caused the follow-up such as Celsius、Three Arrows Capital Liquidation and run . But after SharkTeam On chain analysis , This incident was not caused by a death spiral “ Perfect storm ”, But a long planned financial hunting , Attackers earn a lot of money by shorting . Detailed data statistics 、 Analysis of attack cases 、 The analysis of encryption war is detailed in the report . chinese ：https://www.sharkteam.org/report/analysis/20220725001A_cn.pdf english ：https://www.sharkteam.org/report/analysis/20220725001A_en.pdf

About us ：SharkTeam Our vision is to fully protect Web3 The security of the world . The team members are located in Beijing 、 nanjing 、 Suzhou 、 Silicon valley , It is composed of experienced security professionals and senior researchers from all over the world , Proficient in the underlying theory of blockchain and smart contract , Provide services including smart contract audit 、 On chain analysis 、 Emergency response and other services . We have worked with key players in various fields of the blockchain ecosystem , Such as Huobi Global、OKC、polygon、Polkadot、imToken、ChainIDE And establish a long-term cooperative relationship .Web：https://www.sharkteam.orgTelegram：https://t.me/sharkteamorgTwitter：https://twitter.com/sharkteamorgReddit：https://www.reddit.com/r/sharkteamorg More blockchain security consulting and analysis , Click the link below to view D Check | Chain risk verification  https://m.chainaegis.com