Cointime

Download App
iOS & Android

I Analyzed 120 Crypto Hacks. Here Is What I Learned

Validated Individual Expert

For this article, I analyzed 120 crypto hacks to see how they impacted the price performance of the cryptocurrencies affected. Some of the answers might surprise you.

The results of this research are relevant for investors who hold a cryptocurrency that was affected by a hack or who are considering buying a cryptocurrency after a hack has happened.

Please note that this is not an academic study.

The Dataset

All data used about the hacks come from this dataset from DefiLlama. Historical price data is from Coingecko.

At the time of my analysis, DefiLlama’s dataset contained data on 124 crypto hacks in the period from January 2020 to October 2022.

Crypto Hack Classifications & Techniques

In the period under review, the crypto hacks caused the loss of $5176,05 million.

In their dataset, DefiLlama classified whether the hack targeted a weakness in infrastructure, smart contract language, protocol logic, or the interaction between multiple protocols (ecosystem). The results are visualized in the following chart.

  • As the data shows, faults in the protocol logic offer the greatest attack surface for potential attackers, 37 protocol logic hacks resulted in more than $2 billion in loss.
  • Likewise, the infrastructure and the ecosystem of crypto platforms often offer gaps that hackers can penetrate.
  • On the other hand, rug pulls, i.e. project developers giving up a project and running away with the investors’ money, are relatively rare. 

The next chart shows a selection of the techniques most commonly used by the attackers and how much money was stolen with them.

  • What is striking is how often hackers succeeded by compromising the private keys of project members and investors.
  • Access control exploits allowed attackers to access certain features and perform actions they shouldn’t have had access to.
  • Price oracle manipulation means that hackers found a way to manipulate data provided to a smart contract by third parties in order to make the smart contract perform a specific action.

The Impact of Hacks on Cryptocurrency Prices

Unsurprisingly, the news of a hack has a disastrous impact on the price of the affected cryptocurrencies. On average, hacked crypto projects lost around 50% of their value in the first few days after the hack became public.

The following chart visualizes when the prices reached a local bottom a few days after the hacks using a selection of representative projects. The amount of lost funds does not seem to correlate with the price decreases.

To get a better understanding of how hacked cryptocurrency prices behave over a longer period of time, let’s now look at the timeline below. It shows the percentage change in value at different time stamps.

  • As the previous chart showed, the affected cryptocurrencies lost massively in value in the first few days after the hack.
  • What is surprising is that a hack does not automatically mean the immediate total collapse of a project. A large part of the analyzed cases saw a relative price recovery after the hack — shown as ‘peak after hack’ in the above chart. It is not possible to generalize the time took to reach the peak and how much these price increases were. In some cases, it was the well-known ‘dead cat bounce’, in other cases the underlying bull market seemed to be an important driver.
  • However, a large majority of projects never reached the same or higher price level compared to the price before the hack (blue colored lines). This means that once the trust is gone, in most cases it will never come back.
  • For the few cryptocurrencies, where a higher price was achieved after the hack (yellow lines), this happened during the 2021 bull market. However, none of these projects could sustain profits in the long term.
  • In the long term, hacked projects massively lose value — on average they saw a loss of 80% compared to the price levels just before the hack happened.
  • The main conclusion I draw from this analysis is the following: if you own a cryptocurrency that just got hacked — sell it. With the exception of a bull market, you should NOT expect a long-lasting positive price development in the future. If you are considering buying a cryptocurrency after it got hacked, you should probably look for a better alternative.
  • The data on hack classifications and techniques discussed above shows that many crypto projects have serious vulnerabilities. As a retail investor, it is difficult to review and evaluate crypto projects in this regard. For me, this underlines the importance of audits of reliable 3rd parties.
  • You should also carefully examine potential investments and look for information on how the respective projects are arming themselves against the challenges described above.
Comments

All Comments

Recommended for you

  • Whale Transfers 1,133 BTC to Coinbase Prime, Valued at $71.48 Million

    According to Onchain Lens monitoring, a whale transferred 1,133 BTC from Coinbase to Coinbase Prime through an intermediary wallet, valued at $71.48 million.

  • U.S. AI Chip Stocks Decline Before Market Open, Intel Falls Over 3%

    On July 7, U.S. AI chip stocks experienced widespread declines before the market opened. Intel dropped over 3%, while AMD, Qualcomm, and NXP fell more than 2%. TSMC, Broadcom, and Tesla decreased by over 1%, and NVIDIA declined by 0.7%.

  • China's Central Bank Increases Gold Reserves for the 20th Consecutive Month

    As of the end of June, China's gold reserves stood at 75.44 million ounces (approximately 2,346.446 tons), an increase of 480,000 ounces (about 14.93 tons) from the end of May, which reported 74.96 million ounces (approximately 2,331.52 tons). This marks the 20th consecutive month of gold accumulation.

  • China's Foreign Exchange Reserves in June at $341.6262 Billion

    On July 7, China's foreign exchange reserves for June stood at $341.6262 billion, a decrease of $26 billion from the end of May, representing a decline of 0.75%, with expectations set at $343.2 billion.

  • U.S. Storage Stocks Drop Pre-Market, SanDisk and Micron Down Over 4%

    On July 7, U.S. storage concept stocks collectively fell in pre-market trading. Western Digital dropped over 5%, SanDisk and Micron Technology fell over 4%, Seagate Technology declined over 3%, Rambus fell over 2%, and SMI fell over 1%.

  • U.S. Stocks in Optical Communication Sector Drop Pre-Market

    On July 7, stocks in the optical communication sector of the U.S. market collectively fell pre-market. Astera Labs dropped over 4%, while Marvell Technology, Credo Technology, and AXT Inc. fell more than 3%. Tower Semiconductor, MaxLinear, Corning, Applied Optoelectronics, GlobalFoundries, Lumentum, and Qorvo all declined by more than 2%. Coherent, Nokia, Amphenol, and Broadcom dropped over 1%.

  • Pre-market Decline in U.S. Storage Stocks

    In pre-market trading, U.S. storage concept stocks experienced a widespread decline, with Micron Technology falling by 4.8%, SanDisk dropping over 4%, Corning down more than 2%, and Intel decreasing by over 3%.

  • Two Departments: Support for Reinsurance Institutions to Increase Capital and Issue Supplementary Capital Tools

    On July 7, the National Financial Supervision and Administration Bureau and the Shanghai Municipal Government released several measures to accelerate the construction of the Shanghai International Reinsurance Center. Among these measures, they proposed to enhance the quality and efficiency of the reinsurance industry, support reinsurance institutions in increasing capital and expanding shares, and issuing supplementary capital tools to improve the capacity for internal capital accumulation and external capital supplementation, thereby strengthening the reinsurance industry's capabilities. The initiative aims to guide the insurance industry to focus on major national projects, strategic emerging industries, and livelihood security, consolidating insurance and reinsurance underwriting capabilities to enhance risk protection levels. It also supports reinsurance institutions in leveraging their professional technical advantages to assist the insurance industry in reducing risk.

  • Sources: Saudi Arabia Plans to Expand Oil Pipeline to Red Sea, Increasing Capacity by 2 Million Barrels Daily to Bypass Strait of Hormuz

    On July 7, five informed sources revealed that Saudi Arabia is considering expanding the crude oil pipeline capacity to its western coast on the Red Sea, allowing Saudi Arabia and its neighbors to transport more oil without passing through the Strait of Hormuz. This east-west pipeline, built in the early 1980s, has gained strategic importance since the outbreak of the Iran war in February and the disruption of shipping in the Strait of Hormuz. The pipeline can deliver up to 7 million barrels of crude oil per day to the Red Sea port. The CEO of Saudi Aramco stated in May that approximately 2 million barrels are supplied to west coast refineries, while about 5 million barrels are for export. Sources indicate that Saudi Arabia is in preliminary discussions with some neighboring countries regarding the pipeline expansion, aiming to add about 2 million barrels of pipeline capacity per day. It remains unclear whether Aramco's planned expansion involves upgrading existing infrastructure or constructing new pipelines. One source mentioned that the expansion plan also includes a smaller refined oil pipeline. Two sources indicated that the expansion scale could range from 1 million to 2 million barrels per day, with refined oil also being considered. Another source stated that the project would take several years and cost billions of dollars, requiring adjustments to Saudi crude pricing mechanisms.

  • Citi: Tencent's WorkBuddy Gains Momentum, Maintains 'Buy' Rating

    On July 7, Citi released a research report stating that, according to the latest industry data, Tencent's AI agent product WorkBuddy has reached 20 million monthly active users (MAU) and over 13 million daily active users (DAU), with a DAU/MAU ratio between 65% and 75%. Considering the product has only been launched for a few months, user stickiness and daily engagement are performing strongly. Citi quoted Tencent's management as saying that in terms of daily active users, Tencent is leading its Chinese peers in the deployment of AI agents. Early user data reflects strong natural growth for both CodeBuddy and WorkBuddy, with high retention rates. Early users are interacting with the AI agents for long durations and with high frequency, creating a positive feedback loop. It is expected that AI products will become a key revenue source for Tencent Cloud. The firm believes that WorkBuddy's success demonstrates the strength of Tencent's ecosystem, the synergy between various productivity tools, and users' trust in Tencent's products and security. Citi maintains a 'Buy' rating on Tencent with a target price of HKD 763 unchanged.