The Hacken 2025 Yearly Security Report shows Web3 losses reaching $3.95 billion, up $1.1 billion from 2024, with over half linked to North Korean threat actors. Access control failures accounted for $2.12 billion of losses, compared to $512 million from smart contract vulnerabilities.

The Bybit breach alone resulted in a $1.5 billion theft, contributing to North Korea-linked clusters being responsible for 52% of total stolen funds. Regulators outline controls like role-based access and secure onboarding, but industry practices lag behind.

Hacken anticipates regulators transitioning from soft guidance to hard requirements, urging the industry to adopt dedicated signing hardware protocols and monitoring tools to enhance overall security in 2026. North Korea-linked clusters driving losses emphasize the need for specific supervisory concerns and real-time threat intelligence sharing.

Read more at Cointelegraph: Hacken’s 2025 Security Report Shows Nearly $4B in Web3 Losses