Report: 165 security incidents have occurred in the Web3 field so far in 2024, with losses exceeding US$2.3 billion

According to a report summarizing key security trends in 2024 by Cyvers, Web3 network threats will increase sharply in 2024, resulting in losses of over 2.3 billion US dollars and a total of 165 security incidents. Although the loss amount is 40% higher than in 2023 (1.69 billion US dollars), it is still 1.42 billion US dollars lower than in 2022 (3.78 billion US dollars). It is worth noting that 1.3 billion US dollars of stolen funds were recovered this year.

Cyvers stated that events related to access control (67 incidents) accounted for 81% of the 2.3 billion US dollars in losses, with a total of 456.3 million US dollars in losses caused by approximately 98 incidents of smart contract vulnerabilities, and over 68 million US dollars in losses caused by address poisoning incidents.

When breaking down losses by attack vector over the past three years, data shows that losses related to access control violations have gradually increased from 769 million US dollars in 2022 to 1.9 billion US dollars by the end of 2024. In contrast, losses related to code vulnerability exploitation in 2023 and 2024 were far lower than the losses of approximately 3 billion US dollars in 2022.