Crypto hacks and exploits caused about $37.7 million in losses during February 2026, marking the lowest monthly total since March 2025, according to new data from blockchain security firm CertiK.
The report shows a noticeable drop in overall losses compared with typical monthly figures seen throughout 2025. While attacks continued across the crypto ecosystem, the total amount stolen declined mainly because there were fewer large-scale exploits.
Among all attack types, wallet compromises caused the biggest losses, reaching about $16.6 million during the month. These incidents occur when attackers gain access to private keys or user wallets and move funds without permission.
Price manipulation attacks followed with roughly $11.4 million stolen, while phishing scams accounted for $8.6 million in losses. Other smaller categories included code vulnerability exploits, which caused about $5.1 million in damage, and exit scams, which added another $2.1 million.
Some of the largest individual incidents during February involved specific projects. YieldBlox recorded the biggest exploit with about $10.6 million stolen, followed by IoTeX with $8.9 million, and Foom with roughly $2.3 million in losses. Other incidents included Instadapp, which lost around $10.5 million, and EFX, which suffered $8.9 million in damages.
In terms of sectors, decentralized finance (DeFi) platforms experienced the highest total losses at $14.4 million across several incidents. Meanwhile, projects connected to artificial intelligence technologies were the second most targeted group, with about $8.9 million stolen.
Despite the attacks, recovery efforts helped limit the overall impact. Roughly $11.3 million of the stolen funds were either frozen or recovered, representing close to 30% of the total losses recorded during the month.
Compared with January, February’s losses show a significant improvement. The $37.7 million figure represents about a 60% drop from January’s total, even though the number of incidents remained relatively similar. This suggests that attackers were still active but did not manage to execute as many high-value exploits.
Phishing attacks remained consistent between the two months, with February’s $8.6 million in phishing losses roughly matching the levels recorded in January.
Overall, the data suggests that while cybersecurity risks remain a constant challenge for the crypto industry, improved monitoring, faster responses, and recovery efforts helped reduce the financial damage during February.
