Breaking
ESFamiliares despiden a víctimas de tragedia en Venezuela con epitafios en nichosESEspaña fija objetivos de integración para inmigrantes hasta 2030 con metas de pobreza y empleoESMéxico e Inglaterra se enfrentan en el Mundial tras la eliminación de BrasilESCataluña debe decrecer en masa forestal, afirma el presidente IllaESMovimiento Sumar: El partido de Yolanda Díaz que nació en el poder y ahora se reinventaESLa vida en la frontera de Líbano: entre el miedo a la infiltración y la esperanza de pazESMilitares fallecidos en acto de servicio: la lucha por el reconocimiento como profesión de riesgoESLey de Memoria Democrática: La 'Ley de Nietos' dispara el censo exterior y agita el debate electoralESMéxico - Inglaterra, en vivo | El partido se retrasa una hora debido a una tormenta eléctricaESHaaland aniquila a Brasil y lleva a Noruega a la finalESFamiliares despiden a víctimas de tragedia en Venezuela con epitafios en nichosESEspaña fija objetivos de integración para inmigrantes hasta 2030 con metas de pobreza y empleoESMéxico e Inglaterra se enfrentan en el Mundial tras la eliminación de BrasilESCataluña debe decrecer en masa forestal, afirma el presidente IllaESMovimiento Sumar: El partido de Yolanda Díaz que nació en el poder y ahora se reinventaESLa vida en la frontera de Líbano: entre el miedo a la infiltración y la esperanza de pazESMilitares fallecidos en acto de servicio: la lucha por el reconocimiento como profesión de riesgoESLey de Memoria Democrática: La 'Ley de Nietos' dispara el censo exterior y agita el debate electoralESMéxico - Inglaterra, en vivo | El partido se retrasa una hora debido a una tormenta eléctricaESHaaland aniquila a Brasil y lleva a Noruega a la final
Newsgather
BackCrypto Hacks Exceed $600M in 2026 as AI-Powered Attacks Surge
Crypto Hacks Exceed $600M in 2026 as AI-Powered Attacks Surge
Urgent
Cointelegraph4/23/2026Tech2 min read

Crypto Hacks Exceed $600M in 2026 as AI-Powered Attacks Surge

North Korea-linked exploits dominate as CertiK warns of deepfakes, cross-chain vulnerabilities and sophisticated supply chain attacks

Quick Look

  • CertiK senior blockchain investigator Natalie Newson warns that real-time deepfakes, phishing attacks, supply chain compromises and cross-chain vulnerabilities will drive the biggest crypto hacks in 2026.
  • The industry has already lost over $600 million in 2026, dominated by two North Korea-linked exploits in April: the $293 million Kelp DAO hack involving LayerZero's cross-chain protocol, and the $280 million Drift Protocol exploit.
  • North Korean hackers also used AI for social engineering in a $100,000 Zerion wallet breach.

AI-generated summary

Why It Matters

The crypto industry has experienced massive losses to hacking. In 2025, $3.3 billion was stolen, with supply chain breaches accounting for $1.45 billion across just two incidents. The Bybit hack alone was $1.4 billion. North Korea-linked threat actors are the primary culprits, using increasingly sophisticated methods including AI-powered social engineering.

Font size

Real-time deepfakes, phishing attacks, supply chain compromises and cross-chain vulnerabilities will likely be the root of some of the biggest hacks in 2026, according to CertiK senior blockchain investigator Natalie Newson. The industry has already lost over $600 million to hacks in 2026, owed largely to two North Korea-linked crypto thefts in April, including the $293 million Kelp DAO exploit on Saturday involving a single point-of-trust failure in cross-chain messaging protocol LayerZero's infrastructure, and the $280 million exploit of the Drift Protocol. Another DPRK-linked attack involved the use of AI for social engineering. Crypto wallet Zerion revealed on April 15 that North Korean-affiliated hackers used AI in a long-term social engineering attack to steal about $100,000 from the company's hot wallets. Newson warned that, in "some aspects," the acceleration of AI will only worsen crypto attacks. "The best way for investors to protect themselves is to be aware of the current threats they may face... For instance, to protect yourself against phishing, always verify the authenticity of URLs and smart contracts," Newson said. Newson said that as exploits become more sophisticated, retail investors should explore storage options outside of crypto exchanges. "Using cold wallets can help keep assets that you don't use regularly safe and allows you to sign transactions without ever exposing your private keys," she said. AI could be used to defend against attacks. "There are now more convincing deepfakes, autonomous attack agents, and 'agentic AI' that can autonomously scan smart contracts for bugs, draft exploit code and execute attacks at machine speed," she said. On April 6, Cointelegraph reported that a threat actor known as "Jinkusu" was allegedly selling cybercrime tools designed to bypass Know Your Customer (KYC) checks at banks and crypto platforms, using deepfakes and voice manipulation. "At the same time, AI can also be one of the biggest defenses," said Newson. Cointelegraph recently reported that an increase in AI use has led to a flood of bug bounty submissions, both valid and invalid. Anthropic's AI model Claude Mythos, claimed to have the ability to find vulnerabilities in major operating systems, has been deployed defensively with a release to a limited set of tech firms. Regulators are escalating in response. CertiK shared with Cointelegraph in December 2025 that crypto hackers stole $3.3 billion in 2025. The company said supply-chain breaches emerged as the most damaging threat, accounting for $1.45 billion in losses across just two incidents, including the $1.4 billion Bybit hack in February 2025. Related: Telegram CEO Durov warns EU age-verification app could enable wider tracking. "The Bybit exploit signals that well-capitalized, well-coordinated threat actors are becoming more active across the ecosystem," the report said, predicting a rise in the "sophistication" of supply chain attacks as attackers target more infrastructure providers. Regulators are responding. On April 9, the US Department of the Treasury's Office of Cybersecurity and Critical Infrastructure Protection (OCCIP) announced on Thursday that it is expanding its cybersecurity threat identification program to include digital asset companies.

What to Watch

AI outlook — possibilities, not facts

  • More AI-powered social engineering attacks targeting crypto companies

    Very likely · Within months

  • Additional supply chain attacks targeting infrastructure providers

    Very likely · Within months

  • More regulatory actions targeting crypto cybersecurity

    Likely · Within months

Open Questions

  • What specific vulnerabilities in LayerZero led to the Kelp DAO exploit?
  • How many additional supply chain attacks are expected in 2026?
  • What specific AI defense mechanisms are crypto companies implementing?

Related Topics

This article was originally published by Cointelegraph.

Related Stories

More on this topiccryptocurrency