Web3 Hacks & DeFi Exploit Intelligence

$101B+
Total Value Lost
3299
Incidents Tracked
74
Chains Affected
15
Attack Classes

Search the Incident Console

Start with a project name, narrow by chain or exploit class, then open the incident write-up and sources.

# Project Date Amount Lost Chain Technique Links
91 $2M Coin Poker Access Control Attacks $2.0M Access Control
92 DEXX Access Control Attacks $21.0M solana Private Key Compromised (Stored Publicly) / Other
93 Metawin Access Control Attacks $4.0M Access Control
94 M2 Access Control Attacks $13.7M Access Control
95 Sunray Access Control Attacks $2.9M Access Control
96 M2 Exchange Access Control Attacks $13.7M bitcoin, ethereum… Access Control Exploit
97 1inch Access Control Attacks $720K avalanche Private Key Compromised (Supply Chain Attack)
98 SUNRAY·FINANCE Access Control Attacks $2.9M arbitrum Private Key Compromised
99 Tapioca DAO Access Control Attacks $4.7M arbitrum Private Key Compromised (Social Engineering) / Access Control
100 Radiant V2 Access Control Attacks $53.0M arbitrum, bsc Access Control Exploit
101 Radiant Capital Access Control Attacks $58.0M Access Control
102 Truflation Access Control Attacks $5.0M Private Key Compromised (Malware)
103 BingX Access Control Attacks $52.0M ethereum Hot wallet hack / Other
104 DeltaPrime Access Control Attacks $6.0M arbitrum Private Key Compromised (Unknown Method) / Access Control
105 WXETA Access Control Attacks $110K bsc, ethereum Access Control Exploit
106 Indodax Access Control Attacks $25.2M ethereum, optimism… Access Control Exploit / Other
107 Truflation Access Control Attacks $5.0M Access Control
108 Nexera Access Control Attacks $1.8M ethereum Ownership Override Attack / Access Control
109 Ronin Access Control Attacks $12.0M Access Control
110 Monoswap Access Control Attacks $1.3M blast Private Key Compromised (Malware)
111 Karastar Access Control Attacks $69K Access Control
112 MonoSwap Access Control Attacks $1.3M Access Control
113 WazirX: India Access Control Attacks $235M ethereum Safe Multisig wallet Phishing Exploit / Access Control
114 Dough Finance Access Control Attacks $2.0M ethereum Unvalidated call data exploit / Access Control
115 CoinStats Access Control Attacks $2.2M Private Key Compromised (Unknown Method)
116 Bittensor Access Control Attacks $8.0M Private Key Compromised (Supply Chain Attack) / Access Control
117 BtcTurk Access Control Attacks $54.0M Private Key Compromised (Unknown Method) / Access Control
118 Sportsbet.io Access Control Attacks $3.5M Access Control
119 OKX NFT Aggregator Access Control Attacks $14K bsc Access Control Exploit
120 Farcana Access Control Attacks $440K Access Control

Data sourced from DefiLlama & SunWeb3Sec/DeFiHackLabs . Thank you for keeping Web3 security data open.

Live Feed Last 7 days

Hack Radar

Fresh DeFi incidents the moment they land in our database. Verified by trusted sources; auto-ingested entries are flagged for review.

Understanding Smart Contract Vulnerabilities

Smart contract vulnerabilities remain the leading cause of DeFi protocol losses, with over $10 billion stolen since 2016. Understanding attack vectors like reentrancy, flash loans, and oracle manipulation is essential for every blockchain developer and security researcher.

Each incident in our database is categorized by attack class and linked to our in-depth vulnerability guides, making this the most educational Web3 hacks tracker available. Want a quick ranking? See the most expensive crypto hacks leaderboard.

Learn how these hacks actually worked

Study the exploit patterns behind the incidents in this database, then practice finding them before attackers do.