In July 2025, crypto hacks totaled $142 million, with CoinDCX’s $44 million server breach being the largest. Social engineering and backend vulnerabilities remain key attack vectors.
-
July 2025 saw a 27% increase in crypto thefts compared to June, totaling $142 million across 17 attacks.
-
The CoinDCX hack, involving a sophisticated server breach, accounted for the highest loss of $44 million.
-
Security expert Rob Behnke highlighted social engineering as a critical factor in the WOO X $14 million phishing attack.
Crypto hacks surged to $142M in July 2025, led by CoinDCX’s $44M breach. Learn how social engineering and backend attacks threaten exchanges.
July 2025 Crypto Hacks Surge with CoinDCX Breach Leading Losses
Crypto thefts in July 2025 reached $142 million, marking a 27% increase from June’s $111 million, according to blockchain security firm PeckShield. The most significant incident was the CoinDCX hack, where a sophisticated server breach resulted in a $44 million loss. This breach underscores the growing threat of backend system vulnerabilities in the crypto industry.
WOO X Phishing Attack Exploits Social Engineering Tactics
Rob Behnke, chairman of blockchain security firm Halborn, reported that the WOO X hack on July 24 involved social engineering to compromise a team member’s device. Attackers leveraged this access to infiltrate the development environment, enabling multiple malicious transactions before detection. The attack affected multiple blockchains, including Bitcoin, Ether, BNB, and Arbitrum.
Source: PeckShield
How Are Hackers Shifting Focus to Offchain Systems?
According to Behnke, hackers increasingly target offchain backend infrastructure rather than smart contract vulnerabilities, which are more easily audited. This shift demands stronger security controls and process improvements within crypto projects to mitigate risks posed by sophisticated attackers.
What Were the Other Major Crypto Hacks in July 2025?
Besides CoinDCX and WOO X, the BigONE exchange suffered a third-party hot wallet attack on July 16, losing at least $27 million. Additionally, the GMX decentralized exchange experienced a $40 million exploit, with the attacker returning the stolen funds days later, highlighting varied hacker motivations and tactics.
Source: Halborn
| Crypto Exchange | Loss Amount (USD) | Attack Type |
|---|---|---|
| CoinDCX | $44 million | Server Breach |
| BigONE | $27 million | Hot Wallet Attack |
| WOO X | $14 million | Phishing / Social Engineering |
What Is the Impact of These Hacks on Crypto Security?
Crypto hacks in July 2025 highlight the urgent need for enhanced security protocols focusing on backend infrastructure and employee training. The rise in social engineering attacks shows that human factors remain a critical vulnerability in crypto ecosystems.
How Can Crypto Projects Strengthen Their Defenses?
Experts recommend implementing multi-layered security controls, regular audits of backend systems, and comprehensive staff awareness programs. These measures help reduce risks from sophisticated attacks targeting offchain infrastructure and social engineering exploits.
Frequently Asked Questions
What were the total crypto losses in July 2025?
Crypto losses in July 2025 reached $142 million across 17 attacks, marking a 27% increase from June’s $111 million, with CoinDCX’s $44 million breach leading the incidents.
How do social engineering attacks affect crypto exchanges?
Social engineering attacks manipulate individuals to gain unauthorized access, often bypassing technical defenses, which can lead to significant breaches like the WOO X hack.
Key Takeaways
- Crypto hacks surged to $142 million in July 2025: A 27% increase from June, led by CoinDCX’s $44 million breach.
- Social engineering remains a critical threat: The WOO X phishing attack exploited human vulnerabilities to access backend systems.
- Focus on backend security is essential: Projects must strengthen offchain infrastructure and employee awareness to prevent future breaches.
Conclusion
The July 2025 crypto hacks emphasize the evolving threat landscape, where attackers increasingly exploit backend systems and social engineering techniques. Strengthening security protocols and fostering employee vigilance are paramount to safeguarding digital assets. COINOTAG will continue monitoring these developments to provide timely, expert insights for the crypto community.
