Crypto hack losses fell to $26.5 million in February amid sharp monthly and annual declines: PeckShield

The crypto industry recorded $26.5 million in confirmed hacking losses last month, the lowest total since March 2025, according to data from blockchain security firm PeckShield.

February logged 15 distinct exploits. The total funds lost represent a 98.2% decline from the $1.5 billion stolen in February 2025, a figure that included the record $1.4 billion drain of centralized exchange Bybit, and a 69.2% drop from the $86 million stolen in January, PeckShield's data shows.

The five largest incidents accounted for approximately $25.9 million, or more than 98% of February's total losses, with the largest being a $10 million exploit of YieldBlox, a lending protocol built on the Stellar blockchain.

Other attacks included an $8.8 million breach involving IoTeX’s ioTube bridge, $3 million at CrossCurve, $2.3 million at FOOMCASH, and $1.8 million at Moonwell, per PeckShield’s alert. 

Recovery efforts

Recovery efforts for the month's two largest incidents remain in progress. Stellar Tier-1 validators successfully froze $7.2 million of the $10.2 million stolen from YieldBlox, while the attacker ignored a 10% bounty offer, according to a Feb. 26 post-mortem from security firm Halborn. 

Separately, the IoTeX Foundation announced on Feb. 26 that it would implement a 100% compensation plan for users affected by the Feb. 21 ioTube bridge breach. The foundation stated that 86% of the 410 million unauthorized CIOTX minted in the attack has been frozen via chain-level controls, and it will launch a claims portal to facilitate tiered payouts in stablecoins or native Ethereum assets.

Meanwhile, CrossCurve, which was exploited for $3 million via a gateway validation bypass that permitted spoofed messages, issued an official notice on Feb. 2 offering a 10% whitehat bounty for the return of funds.