Web3 Hacks & DeFi Exploit Intelligence

$101B+
Total Value Lost
3299
Incidents Tracked
74
Chains Affected
15
Attack Classes

Search the Incident Console

Start with a project name, narrow by chain or exploit class, then open the incident write-up and sources.

# Project Date Amount Lost Chain Technique Links
31 Step Finance Access Control Attacks $40.0M solana Private Key Compromised / Access Control
32 Holdstation Access Control Attacks $192K Access Control
33 SynapLogic Access Control Attacks $186K Access Control
34 IPOR Fusion Access Control Attacks $336K arbitrum EIP-7702 Delegation Exploit / Access Control
35 Unleash Protocol Access Control Attacks $3.9M story Multisig Governance Hack / Access Control
36 Trust Wallet Access Control Attacks $7.0M bitcoin, ethereum… Private Key Compromised (Supply Chain Attack) / Access Control
37 Rari Capital Access Control Attacks $2.0M ethereum Uninitialized Proxy Hijack
38 Ribbon Access Control Attacks $2.7M ethereum Private Key Compromised
39 Eden Network Access Control Attacks $54K Access Control
40 USPD Access Control Attacks $200K Access Control
41 Upbit Access Control Attacks $36.0M solana Private Key Compromised / Other
42 GANA Payment Access Control Attacks $3.1M bsc Private Key Compromised / Other
43 DIMO Access Control Attacks $40K ethereum Private Key Compromised / Access Control
44 Balancer V2 Access Control Attacks $128M arbitrum, base… Composable Stable Pools Exploit / Access Control
45 Beets Access Control Attacks $3.0M Access Control
46 Garden Access Control Attacks $10.8M arbitrum, base… Private Key Compromised
47 402bridge Access Control Attacks $17K base Private Key Compromised (Stored Publicly) / Access Control
48 Hyperliquid User Private Key Compromise Access Control Attacks $21.0M Access Control
49 GriffinAI Access Control Attacks $3.0M bsc False Peer Exploit / Access Control
50 SBI Crypto Access Control Attacks $24.0M bitcoin, bitcoincash… Access Control
51 Seedify Access Control Attacks $1.2M avalanche, bsc Infinite Mint and Dump / Access Control
52 UXLINK Access Control Attacks $48.0M arbitrum, ethereum Delegatecall Exploit / Access Control
53 Shibarium Access Control Attacks $2.4M Access Control
54 Evoq Finance Access Control Attacks $420K bsc Advanced Persistent Threat (APT) attack / Access Control
55 OlaXBT Access Control Attacks $2.0M bsc Multisig wallet Social Engineering Exploit / Access Control
56 Cozy Finance Access Control Attacks $427K Access Control
57 BtcTurk Access Control Attacks $48.0M arbitrum, avalanche… Private Key Compromised / Access Control
58 CrediX Access Control Attacks $4.5M sonic Private Key Compromised / Access Control
59 SuperRare Access Control Attacks $730K ethereum updateMerkleRoot Access Control Exploit / Access Control
60 CoinDCX Access Control Attacks $44.2M Access Control

Data sourced from DefiLlama & SunWeb3Sec/DeFiHackLabs . Thank you for keeping Web3 security data open.

Live Feed Last 7 days

Hack Radar

Fresh DeFi incidents the moment they land in our database. Verified by trusted sources; auto-ingested entries are flagged for review.

Understanding Smart Contract Vulnerabilities

Smart contract vulnerabilities remain the leading cause of DeFi protocol losses, with over $10 billion stolen since 2016. Understanding attack vectors like reentrancy, flash loans, and oracle manipulation is essential for every blockchain developer and security researcher.

Each incident in our database is categorized by attack class and linked to our in-depth vulnerability guides, making this the most educational Web3 hacks tracker available. Want a quick ranking? See the most expensive crypto hacks leaderboard.

Learn how these hacks actually worked

Study the exploit patterns behind the incidents in this database, then practice finding them before attackers do.