Key Takeaways
- February’s crypto security breaches totaled $26.5M–$35.7M, marking the lowest monthly figure since March 2025
- YieldBlox suffered the month’s largest attack: a $10M oracle manipulation targeting its Stellar-based lending protocol
- A compromised private key resulted in roughly $8.9M stolen from IoTeX on February 21
- Total losses decreased more than 69% compared to January’s $86M, and dramatically lower than the $1.5B Bybit breach in February 2025
- Phishing schemes continue threatening users, responsible for $8.5M of February’s total damage
The cryptocurrency industry experienced a significant downturn in security incidents throughout February, reaching the lowest monthly loss figures recorded since March 2025. Two prominent blockchain security monitoring firms, PeckShield and CertiK, independently verified this decline, placing estimated damages between $26.5 million and $35.7 million for the entire month.
This represents a dramatic reduction from January’s reported $86 million in stolen assets—a month-over-month decrease exceeding 69%. The contrast becomes even starker when compared to February 2025, which saw the massive $1.5 billion Bybit exchange compromise dominate the statistics.
Across February, security researchers documented 15 separate security incidents, though two particularly significant attacks comprised the majority of financial damage. The most substantial breach targeted YieldBlox, a decentralized autonomous organization overseeing a lending protocol built on the Stellar blockchain.
On February 22, an exploiter took advantage of insufficient liquidity within the USTRY/USDC trading pair. Through a single strategically executed transaction, the attacker artificially pumped the token’s valuation by 100 times, manipulating the protocol into permitting massively undercollateralized loan withdrawals.
The second major incident affected IoTeX, a blockchain platform focused on Internet-of-Things applications, occurring on February 21. Attackers gained unauthorized access to a compromised private key controlling the project’s token treasury.
The perpetrator rapidly converted stolen tokens into ETH before moving funds through cross-chain bridge infrastructure toward Bitcoin. While CertiK calculated damages approaching $9 million, IoTeX’s internal assessment placed actual losses nearer to $2 million.
Foom.Cash, a privacy-focused protocol, experienced the third-largest February exploit, losing $2.2 million. The attacker identified and leveraged a cryptographic vulnerability to manufacture fraudulent zkSNARK proofs, essentially creating counterfeit digital signatures the system mistakenly validated.
Factors Behind February’s Decline
PeckShield’s analysis highlighted that February lacked any single catastrophic “mega-hack” comparable to events like the Bybit incident, which naturally suppressed overall totals. Additionally, Bitcoin experienced a sharp price correction early in February, dropping beneath $70,000, which analysts believe redirected market attention away from protocol vulnerabilities.
Dominick John, an analyst with Kronos Research, suggested that enhanced security protocols, stricter counterparty vetting procedures, and sophisticated real-time monitoring systems deployed across major platforms played significant roles in reducing successful attacks. He emphasized that artificial intelligence-powered code auditing tools and automated vulnerability detection systems are identifying security flaws much earlier in development cycles.
Phishing Attacks Persist
Despite the encouraging overall reduction, phishing operations remained a troubling concern throughout February. These social engineering attacks were responsible for $8.5 million in losses.
The proliferation of specialized “drainer-as-a-service” platforms such as Angel Drainer and Inferno Drainer has significantly lowered the barrier to entry for would-be attackers. These turnkey solutions provide counterfeit websites, impersonated social media profiles, and pre-built malicious smart contract code in return for a percentage of successfully stolen cryptocurrency.
PeckShield strongly recommended that both institutional investors and individual holders with substantial holdings implement multi-signature cold storage solutions and maintain rigorous private key security protocols.
Nevertheless, wallet drainer attack losses have shown improvement year-over-year, declining from $494 million throughout 2024 to $83.85 million in 2025.
Get 3 Free Stock Ebooks
Discover top-performing stocks in AI, Crypto, and Technology with expert analysis.
- Top 10 AI Stocks - Leading AI companies
- Top 10 Crypto Stocks - Blockchain leaders
- Top 10 Tech Stocks - Tech giants
