🥷 𝐓𝐎𝐏 𝐂𝐑𝐘𝐏𝐓𝐎 𝐇𝐀𝐂𝐊𝐒 𝐈𝐍 𝐇𝐈𝐒𝐓𝐎𝐑𝐘

𝟏. 𝐑𝐨𝐧𝐢𝐧 𝐍𝐞𝐭𝐰𝐨𝐫𝐤, 𝟐𝟎𝟐𝟏 - $𝟔𝟐𝟓𝐦
A sidechain tied to blockchain game Axie Infinity, announced it had been breached by hackers that hijacked 173,600 ETH and $25.5 million in stolen funds. Attackers breached security by gaining access to private keys used to forge fake withdrawals.

𝟐. 𝐏𝐨𝐥𝐲 𝐍𝐞𝐭𝐰𝐨𝐫𝐤, 𝟐𝟎𝟐𝟏+𝟐𝟎𝟐𝟑 - $𝟔𝟏𝟏𝐦
Attackers was able to create a malicious parameters, including a fake block header and validator signature. This exploit allowed the attacker to bypass the bridge’s validation process and withdraw tokens from the bridge to their own address.

𝟑. 𝐂𝐨𝐢𝐧𝐜𝐡𝐞𝐜𝐤, 𝟐𝟎𝟏𝟖 - $𝟓𝟑𝟒𝐦
The company stated that hackers had stolen approximately 523 million NEM coins from its hot wallet, which at the time were worth around $534m.
The identities of the hackers that breached the security system are still unknown.

𝟒. 𝐌𝐭. 𝐆𝐨𝐱, 𝟐𝟎𝟏𝟏-𝟐𝟎𝟏𝟒 - $𝟒𝟖𝟎𝐦
In June of 2011, the company experienced its first hack in which hackers got hold of Mt. Gox auditor’s computer and changed the price of bitcoin to 1 cent. Then they started buying bitcoin at this artificial price using the private hot wallet keys of Mt. Gox customers, obtaining about 2,000 BTC. On top of that: customers bought about 650 BTC, of which 0 BTC was ever returned. After this, Mt. Gox tightened security, but it wasn’t enough to protect the exchange. Investigations of the 2014 fiasco reveal that the Mt. Gox private key was unencrypted and stolen back in 2011. It’s unclear whether this information was obtained through a hack or with the help of an insider.

𝟓. 𝐖𝐨𝐫𝐦𝐡𝐨𝐥𝐞, 𝟐𝟎𝟐𝟏 - 𝟑𝟐𝟖𝐦
The attacker managed to forge a valid signature for a transaction that allowed them to freely mint 120,000 wETH — a “wrapped” Ethereum equivalent on the Solana blockchain, with value equivalent to $325 million at the time of the theft — without first inputting an equivalent amount. This was then exchanged for around $250 million in Ethereum that was sent from Wormhole to the hackers’ account, effectively liquidating a large amount of the platform’s Ethereum funds that were being held as collateral for transactions on the Solana chain.

𝟔. 𝐅𝐓𝐗, 𝟐𝟎𝟐𝟐 - 𝟑𝟐𝟑𝐦
Three individuals charged by USA prosecutors for orchestrating a series of SIM-swap attacks have been linked to the $323 million hack of FTX in 2022 that occurred just hours after it filed for bankruptcy. SIM swapping allows attackers to intercept multifactor authentication codes often used for logins. Multiple high-profile crypto figures and projects were successfully targeted in a spate of attacks in December 2023.

𝟕. 𝐊𝐮𝐂𝐨𝐢𝐧, 𝟐𝟎𝟐𝟎 - $𝟐𝟖𝟏𝐦
One or more hackers obtained the private keys to the exchange’s hot wallets.

𝟖. 𝐁𝐢𝐭𝐦𝐚𝐫𝐭, 𝟐𝟎𝟐𝟏 - $𝟐𝟎𝟎𝐦
Attack was directly on exchange Ethereum and Binance Smart Chain hot wallets. After transferring the funds out of BitMart, hackers reportedly used decentralized exchange aggregators 1inch and PancakeSwap to exchange the stolen tokens. From there, the ether coins were deposited into a privacy mixer known as Tornado Cash, thus making it difficult to track the stolen funds.

𝟗. 𝐏𝐚𝐧𝐜𝐚𝐤𝐞𝐁𝐮𝐧𝐧𝐲, 𝟐𝟎𝟐𝟏 - $𝟐𝟎𝟎𝐦
Flash Loan exploit, tanking the price of BUNNY tokens by 96% from $220 to around $10 within a day. Hacker was borrowed more than $700 million in BNB from 7 PancakeBunny lending pools, as well as almost $3 million in USDT from another source. They used this to manipulate the price of BNB using a bug in PancakeBunny’s BNB-USDT liquidity pool, which allowed them to mint almost 7m BUNNY in a complex, This was dumped for about 2.4 million BNB - which caused the price of BUNNY to crater.

𝟏𝟎. 𝐍𝐨𝐦𝐚𝐝, 𝟐𝟎𝟐𝟐 - $𝟏𝟗𝟎𝐦
Hacker found a vulnerability in code that failed to properly validate that a message was approved before processing it. When 1 hacker started taking out funds, a swarm of copycats joined the party.