Crypto Thieves Made Off With $4.3B in 2022: Top Hacks of the Year

From Axie to Wintermute, 2022 was the biggest year yet for crypto hacks

article-image

solarseven/Shutterstock.com modified by Blockworks

share

Topping off an already tumultuous year for cryptocurrency prices and company blowups, 2022 was a record year for crypto hacks. 

From January 2022 to November 2022, hackers made off with $4.3 billion of cryptocurrency, up 37% from the same period in 2021, according to data from cybersecurity firm Privacy Affairs. Analysts at Solidus Labs estimate bad actors are launching up to 15 crypto-related scams per hour. 

We’ve rounded up the top hacks of the year — so far. 

Axie Infinity’s Ronin Network — $625 million 

Coming in at the biggest breach of the year, hackers made off with more than $600 million from Ronin Network, an Ethereum-linked sidechain used for blockchain game Axie Infinity in March. Exploiters, the network said, used hacked private keys to forge withdrawals on March 23. The breach wasn’t discovered until almost a week later, when a user was unable to withdraw 5,000 ETH.

Later, Sky Mavis, the company that built the bridge, acknowledged that it may have sacrificed security for speed when developing the bridge. Sky Mavis then announced a $150 million raise, led by Binance, to reimburse affected users. Other contributors to the round included Paradigm, Animoca Brands, Dialectic, Accel and Andreesen Horowitz.

Wormhole Bridge — $320 million 

In February, hackers targeted Wormhole, one of the largest cross-chain bridges between Solana and other blockchains. The bad actors exploited a vulnerability in Wormhole’s validation system, allowing them to make off with fraudulently generated wrapped ether. 

Hackers then used the chain to convert the wrapped ether into ether. Wormhole parent company Jump Crypto later replaced all 120,000 ether the bridge lost. 

Nomad Bridge — $190 million 

In August, DeFi bridge Nomad lost $190 million in a hack that involved 960 transactions and 1,175 individual withdrawals. Users were able to exploit a bug in the protocol that allowed them to withdraw more than they had deposited. 

It is thought that once news of the bug spread, users rushed to exploit it themselves, resulting in a free-for-all involving onlookers rushing to submit illicit transactions, quickly draining the token bridge of all user funds kept inside its associated smart contract.

White hat hackers later returned at least $32 million to a recovery wallet address, Nomad said. The wallet was set up in association with custodian bank, Anchorage Digital. 

Beanstalk Farms — $182 million 

Ethereum-based stablecoin protocol Beanstalk lost $182 million in April when a hacker used a flash loan to buy a majority position in STALK, the protocol’s native governance token. The hacker then proposed a massive transfer of funds and approved it using their own majority vote. 

Nearly four months after the breach, the algorithmic stablecoin protocol relaunched. Beanstalk Farms said it “unpaused” its services on the one-year anniversary of its original August 2021 launch.

Wintermute — $160 million 

In September, Liquidity provider Wintermute, which provides liquidity across most CeFi and DeFi exchanges, said it lost $160 million in a security breach. Wintermute is among the largest crypto liquidity providers, conducting market making services for exchanges including Binance and Coinbase.

There is speculation that the hack was an inside job, but no cause or perpetrator has been confirmed.


Start your day with top crypto insights from David Canellis and Katherine Ross. Subscribe to the Empire newsletter.

Explore the growing intersection between crypto, macroeconomics, policy and finance with Ben Strack, Casey Wagner and Felix Jauvin. Subscribe to the Forward Guidance newsletter.

Get alpha directly in your inbox with the 0xResearch newsletter — market highlights, charts, degen trade ideas, governance updates, and more.

The Lightspeed newsletter is all things Solana, in your inbox, every day. Subscribe to daily Solana news from Jack Kubinec and Jeff Albus.

Tags

Upcoming Events

Javits Center North | 445 11th Ave

Tues - Thurs, March 18 - 20, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

Brooklyn, NY

TUES - THURS, JUNE 24 - 26, 2025

Permissionless IV serves as the definitive gathering for crypto’s technical founders, developers, and builders to come together and create the future.If you’re ready to shape the future of crypto, Permissionless IV is where it happens.

recent research

Research Report Templates.png

Research

An overview of the Base Ecosystem, with a focus on market leaders.

article-image

Although bitcoin hitting $120k by year’s end is looking unlikely

article-image

About 270 million HYPE has been claimed, valued around $7.6 billion

article-image

Stanford professors David Mazières and Dan Boneh will lead the lab alongside a cohort of graduate student researchers

article-image

With more companies holding BTC, bitcoin yielding strategies could become “a new corporate finance norm,” CoinShares posed

article-image

The proposal comes after Polygon governance considered a controversial use of bridged liquidity for yield

article-image

Can the community balance its decentralized ethos with the need for inclusivity and constructive debate?