In 2025, crypto phishing attacks declined sharply, with losses dropping to $83.85 million, down 83% from the previous year. The number of victims also fell by 68%, with phishing losses closely following market cycles, peaking during periods of high onchain activity. Monthly losses ranged from $2.04 million to $12.17 million.

The largest phishing theft of 2025 totaled $6.5 million and involved a malicious Permit signature. Permit-based attacks accounted for 38% of losses among incidents exceeding $1 million. The emergence of EIP-7702-based malicious signatures highlighted attackers’ adaptability to protocol-level changes, resulting in $2.54 million in losses.

Despite a decline in large-scale incidents, attackers favored lower-value, higher-volume strategies in 2025. Only 11 cases exceeded $1 million, down from 30 in 2024, with the average loss per victim falling to $790. The drainer ecosystem remains active, with new attackers filling the gap left by exiting ones.

Crypto-related losses from hacks and cybersecurity exploits decreased by 60% in December, totaling around $76 million. The largest incident involved a $50 million address poisoning scam, while another saw $27.3 million lost through a private key leak tied to a multi-signature wallet. Despite a slowdown in overall losses, attack activity remained persistent.

Read more at Cointelegraph: Crypto Phishing Losses Fell 83% in 2025, Scam Sniffer Reports