Crypto Exploit Losses Plunge 90% to $68M in May
Crypto exploit losses fell sharply to $68.3 million in May from $650 million in April, with code vulnerabilities and bridge exploits still leading. The largest was a $11.5M Verus Protocol bridge attack.
Quick Take
May losses $68.3M, down 90% from April's $650M.
Code vulnerabilities caused 66% of losses, bridges 42%.
Largest exploit: Verus Protocol bridge $11.5M.
29 total incidents, 7 from compromised private keys.
Market Impact Analysis
BullishA significant drop in exploit losses reduces negative headlines and may increase user/investor confidence, potentially leading to positive price sentiment.
Speculation Analysis
Key Takeaways
- May exploit losses plunged to $68.3M, a 90% drop from April's $650M, signaling reduced severity.
- Code vulnerabilities caused 66% of losses, while bridge exploits accounted for 42% of total stolen funds.
- The largest single exploit was Verus Protocol’s bridge losing $11.5M; THORChain followed at $10.1M.
- 29 incidents recorded; private key compromises led to 7 exploits, including $5.4M from Gravity Bridge.
What Happened
Crypto exploit losses tumbled to $68.3 million in May, a staggering 90% decline from April’s $650 million, according to security firm CertiK. This marks the third month of 2026 with losses under $100 million. The largest attack was a $11.5 million exploit of Verus Protocol’s cross-chain bridge, followed by THORChain’s $10.1 million loss. Phishing attacks accounted for just $2.6 million, while approximately $9.4 million was recovered or returned. The drop comes after April’s brutal tally—the worst since March 2022 excluding Bybit’s $1.5 billion hack—driven largely by Kelp DAO’s $291 million exploit.
The Numbers
May’s $68.3 million in losses contrasts sharply with April’s $650 million. Code vulnerabilities remained the top category, causing 66% of the damage—roughly $45 million. Cross-chain bridges were the most targeted vector, losing $28.6 million, or 42% of the total. Private key compromises affected 7 of the month’s 29 incidents, resulting in $13.7 million stolen. Two late-May exploits—Alephium Bridge ($815K) and Gravity Bridge ($5.4 million)—were both attributed to compromised keys. Meanwhile, $9.4 million was recovered, softening the overall impact.
Why It Happened
The sharp decline likely reflects a reprieve from the spate of large-scale attacks that hit April. Improved security protocols following the Bybit and Kelp DAO incidents may have forced attackers to pivot to smaller targets or adopt new methods. Yet code vulnerabilities and bridges remain persistently lucrative for hackers due to their complexity and high-value transactions. The industry’s increased emphasis on audits and bug bounties could be paying off, though persistent private key compromises suggest operational security still lags.
Broader Impact
The 90% drop in exploit losses is a bullish signal for market sentiment, potentially easing investor fears of catastrophic hacks. Fewer headline-grabbing breaches can restore confidence in DeFi and bridge protocols. However, the rise of AI-assisted malware and evolving attack patterns mean the threat landscape is far from static. Protocols must continue hardening security, especially around key management and cross-chain infrastructure.
What to Watch Next
- Will June sustain lower exploit losses, or will attackers regroup? Monitor monthly CertiK reports for trend reversals.
- Watch for increased bridge security upgrades and audits as protocols respond to persistent targeting.
- Keep an eye on AI-driven malware trends; they could lead to more sophisticated private key attacks.
This article is for informational purposes only and does not constitute financial advice.
Always late to trends?
Join for the latest news, insights & more.
Disclaimer: Bytewit is an independent media outlet that delivers news, research, and data.
© 2026 Bytewit. All Rights Reserved. This article is for informational purposes only.
