July’s Crypto Crisis: A Deep Dive into $142 Million in Hacks and Security Breaches

Crypto Hacks in July Surge to Over $142 Million, CoinDCX Suffers Largest Loss

In a troubling escalation for the cryptocurrency industry, hackers and scammers stole a total of more than $142 million across 17 separate cyberattacks in July 2025. According to blockchain security firm PeckShield, this represents a 27% increase in monthly losses compared to June’s reported $111 million, making July one of the most costly months for crypto security breaches this year.

CoinDCX Breach Tops the List with $44 Million Stolen

The most significant assault targeted Indian cryptocurrency exchange CoinDCX on July 18, resulting in a $44 million theft. The company’s CEO, Sumit Gupta, described the incident as “a sophisticated server breach.” Law enforcement swiftly responded, with a CoinDCX employee arrested in connection with the hack on the following Thursday, signaling potential insider involvement.

Other Major Incidents: GMX and BigONE

The second-largest hack hit decentralized exchange GMX on July 11, where approximately $40 million in crypto assets were illicitly taken. Notably, the attacker returned the stolen funds to the platform just days later, an unusual development in such cases.

Also making headlines was the attack on crypto exchange BigONE on July 16. This breach targeted the platform’s hot wallet infrastructure through a third-party attack, culminating in a loss of at least $27 million.

WOO X Hack Reveals Rising Sophistication of Attacks

Rounding out the month’s most damaging hacks was trading platform WOO X, which suffered a phishing attack on July 24 leading to a minimum theft of $14 million. Rob Behnke, chairman of cybersecurity firm Halborn, provided insights into this breach, revealing that attackers employed social engineering tactics to compromise a team member’s device. This gave them access to the development environment, allowing them to exploit system trust and drain user accounts across multiple blockchains, including Bitcoin (BTC), Ethereum (ETH), Binance Coin (BNB), and Arbitrum (ARB).

Behnke noted, “The attacker successfully performed multiple malicious transactions over the course of two hours before suspicious activity was detected and withdrawals were disabled.” Importantly, affected user accounts were later reimbursed using funds from WOO X’s company treasury.

Trend Towards Targeting Offchain Systems

Experts emphasize a notable shift in hacker strategies, with more attackers focusing on offchain systems rather than the on-chain smart contract vulnerabilities traditionally exploited. Behnke explained, “Instead of looking for exploitable smart contract vulnerabilities, which can be addressed through audits, attackers are targeting weaknesses in back-end infrastructure and processes.” This evolution in attack vectors underscores the increasing complexity of security challenges faced by DeFi projects and exchanges.

Year-on-Year Perspective and Industry Response

While the $142 million stolen in July 2025 marks a sharp increase over the previous month, it remains 46% lower than the $266 million lost during the same period in 2024. The previous year’s most substantial breach was the $230 million hack of Indian exchange WazirX, highlighting that despite improvements, vulnerabilities persist, particularly in centralized exchanges.

Industry stakeholders continue to advocate for enhanced security measures, emphasizing the importance of rigorous audits, robust internal controls, and staff training to counteract social engineering and insider threats.

Summary of Key Crypto Hacks in July 2025:

As cryptocurrency adoption grows, the industry faces increasing cybersecurity risks. The July hacking spree serves as a stark reminder for exchanges and DeFi platforms to strengthen defenses against evolving tactics targeting both on-chain and offchain systems.

For continuous updates and in-depth coverage of blockchain security developments, stay tuned to Cointelegraph.