고플러스 연례 보안 보고서, "초대형 해킹·소액 사기 동시 급증"
확대하기[올 한 해 웹3 보안사고 1,200건 발생…피해액 5조 넘어]
올 한 해 동안 웹3 영역에서 발생한 주요 보안 사고로 인한 피해액이 35억 달러(한화 5조 270억 원)를 넘어선 것으로 나타났다.
블록체인 보안 플랫폼 고플러스(GoPlus)의 렉트 데이터베이스(Rekt Databas...

<div><h3></h3><p><span>고플러스 연례 보안 보고서, "초대형 해킹·소액 사기 동시 급증"</span></p><div><div><figure><span><a href="https://www.blockstreet.co.krjavascript:void(Common.imageView('20230227000001_1024.jpg'));" title="확대하기" rel="nofollow"><img src="https://img.blockstreet.co.kr/assets/image/icons/plus.png"></a></span><img src="https://img.blockstreet.co.kr/photo/2023/02/27/20230227000001_0800.jpg" alt="올 한 해 웹3 보안사고 1,200건 발생…피해액 5조 넘어"></figure></div></div>올 한 해 동안 웹3 영역에서 발생한 주요 보안 사고로 인한 피해액이 35억 달러(한화 5조 270억 원)를 넘어선 것으로 나타났다. <br><br>블록체인 보안 플랫폼 고플러스(GoPlus)의 렉트 데이터베이스(Rekt Database)에 따르면, 올해 웹3 분야에서 사용자와 프로젝트를 대상으로 한 심각한 보안 사고가 1,200건 이상 발생했으며, 총 피해액은 35억 달러를 초과했다. <br><br><h2>바이비트 15억 달러 해킹 '최대 피해'…상위 3건 모두 대형 거래소</h2> <br>공격 유형별로는 개인키 탈취(바이러스·트로이목마 및 사회공학적 기법 기반), 피싱 공격, 러그풀 토큰(사기성 토큰) 순으로 가장 빈번하게 발생했다. <br><br>특히 피해 규모 상위 3대 사건은 모두 중앙화 거래소를 겨냥한 것으로 집계됐다. ▲바이비트(Bybit) 해킹 사건(2월 21일, 15억 달러) ▲세터스(Cetus) 해킹 사건(5월 22일, 2억 2,300만 달러) ▲밸런서(Balancer) 해킹 사건(11월 2일, 1억 2,800만 달러)이 2025년 최대 피해 사건으로 기록됐다. <br><br><h2>"정밀 타격·광범위 사기 병행"…공격 전략 양극화</h2> <br>보안 전문가들은 올해 보안 상황이 '초대형 사건 증가'와 '사용자 대상 소액 사기 비용 현저한 감소'라는 두 가지 뚜렷한 특징을 보였다고 분석했다. 이는 공격자들의 전략이 고액 자산을 노리는 '정밀 타격'과 다수를 대상으로 한 '광범위 사기'를 동시에 구사하는 추세로 변화했음을 의미한다. <br><br>주목할 점은 단일 사건 피해액이 3,000만 달러를 초과하는 대형 공격이 총 12건 발생했으며, 이 중 7건이 중앙화 금융(CeFi) 플랫폼을 대상으로 했다는 사실이다. 관리자 개인키 탈취와 핫월렛 개인키 도난이 주요 원인으로 지목되면서, 중앙화 거래소의 보안 취약점이 심각한 수준임이 드러났다. <br><br>업계에서는 중앙화 거래소들이 개인키 관리 체계를 전면 재점검하고, 다중서명(Multi-sig) 지갑 및 콜드월렛 비중 확대 등 근본적인 보안 강화 조치가 시급하다는 목소리가 높아지고 있다. <br><br>최주훈 joohoon@blockstreet.co.kr<br></div>

올 한 해 웹3 보안사고 1,200건 발생···피해액 5조 넘어

GoPlus Annual Security Report: "Simultaneous Surge in Large-Scale Hacks and Small-Scale Fraud"
[1,200 Web3 Security Incidents This Year… Damages Exceed KRW 5 Trillion]
Major security incidents in the Web3 sector this year have resulted in damages exceeding $3.5 billion (KRW 5.027 trillion).
GoPlus, a blockchain security platform, announced its Rekt Database...

<div><h3></h3><p><span>Goplus Annual Security Report: &quot;Simultaneous Increase in Large-Scale Hacks and Small-Scale Fraud&quot;</span></p><div><div><figure> <span><a href="https://www.blockstreet.co.krjavascript:void(Common.imageView('20230227000001_1024.jpg'));" title="Zoom in" rel="nofollow"><img src="https://img.blockstreet.co.kr/assets/image/icons/plus.png"></a></span> <img src="https://img.blockstreet.co.kr/photo/2023/02/27/20230227000001_0800.jpg" alt="This year, 1,200 Web3 security incidents occurred, with damages exceeding 5 trillion won."></figure></div></div> The damage caused by major security incidents in the Web3 sector this year has exceeded $3.5 billion (KRW 5.027 trillion).<br><br> According to the Rekt Database from blockchain security platform GoPlus, there have been more than 1,200 serious security incidents targeting users and projects in the Web3 space this year, with a total damage exceeding $3.5 billion.<br><br><h2> Bybit&#39;s $1.5 billion hack caused the largest damage, with the top three incidents all occurring at major exchanges.</h2><br> By attack type, the most frequent attacks were private key theft (based on viruses, Trojans, and social engineering techniques), phishing attacks, and rugful tokens (fraudulent tokens).<br><br> Notably, the top three incidents in terms of damage were all reported to have targeted centralized exchanges. The Bybit hack (February 21, $1.5 billion), the Cetus hack (May 22, $223 million), and the Balancer hack (November 2, $128 million) were recorded as the largest damage incidents of 2025.<br><br><h2> &quot;Precision strikes and widespread fraud in parallel&quot;… Polarization of attack strategies</h2><br> Security experts analyzed that this year&#39;s security situation exhibited two distinct characteristics: an increase in mega-incidents and a significant decrease in the cost of micro-fraud targeting users. This indicates a shift in attacker strategies, with a trend toward simultaneously employing &quot;precision attacks&quot; targeting high-value assets and &quot;wide-scale fraud&quot; targeting large numbers of people.<br><br> It&#39;s noteworthy that a total of 12 large-scale attacks occurred, each resulting in losses exceeding $30 million, and seven of these targeted centralized finance (CeFi) platforms. Theft of administrator private keys and hot wallet private keys were identified as the primary causes, highlighting the serious security vulnerabilities of centralized exchanges.<br><br> There are growing voices in the industry calling for centralized exchanges to comprehensively review their private key management systems and take fundamental security enhancement measures, such as expanding the use of multi-signature wallets and cold wallets.<br><br> Joohoon Choi joohoon@blockstreet.co.kr<br></div>

This year, 1,200 Web3 security incidents occurred, with damages exceeding 5 trillion won.

<p><span style="color:#7f8c8d">Written by: Ugo</span></p><br/><br/><p><span style="color:#7f8c8d">Translated by: Luffy, Foresight News</span></p><br/><br/><p>In February 2024, I entered the world of Meme coin trading with $80, only to lose it all. I've had this kind of disastrous experience twice.</p><br/...

Using wallet tracking, he turned $50 into a millionaire at age 18.

<img alt="" class="attachment-large size-large wp-post-image" height="680" src="https://i0.wp.com/abmedia.io/wp-content/uploads/2025/10/trump-to-meet-with-xi-thursday-stock-bitcoin-price.jpg?fit=1020%...

Trump claims China's military exercises around Taiwan have "continued for 20 years" and doesn't believe the situation has escalated! Market forecasts indicate the probability of an invasion is only 0.4%.

PANews reported on December 31st that, according to the minutes of the Federal Open Market Committee (FOMC) meeting held on December 9-10, most Federal Reserve officials believed that further interest rate cuts were appropriate once inflation declined over time. However, the minutes showed that officials remained divided on when and by how much to cut rates. The minutes highlighted the difficulties policymakers faced in their most recent decision. The decision slightly reinforced market expectations that the Fed would keep interest rates unchanged when it meets again in January 2026. The minutes stated: "Some support for this meeting..."

The Federal Reserve meeting minutes revealed a divergence of opinions on interest rate cuts: most officials expected continued easing, but the timing and magnitude remained uncertain.

This year, 1,200 Web3 security incidents occurred, with damages exceeding 5 trillion won.

Bybit's $1.5 billion hack caused the largest damage, with the top three incidents all occurring at major exchanges.

"Precision strikes and widespread fraud in parallel"… Polarization of attack strategies