The Web3 ecosystem faced significant security challenges in July 2025, with SlowMist’s latest monthly security report revealing $147 million in losses across 13 major hacking incidents.
Despite efforts to mitigate damages, with $42.48 million now reportedly recovered or frozen, the recent report from blockchain security firm SlowMist underscores the persistent vulnerabilities in decentralized systems and the growing sophistication of cybercriminals.
In a key update that delves into key developments in the crypto and web3 security space, SlowMist’s report highlighting major cybersecurity incidents, phishing trends, and broader implications of these malicious activities for the blockchain space.
According to SlowMist, a blockchain security firm known for its comprehensive audits and threat intelligence, July 2025 was marked by a series of high-profile hacks that targeted exchanges, DeFi platforms, and individual users.
The most significant incident involved CoinDCX, a prominent cryptocurrency exchange, which suffered a $44.2 million loss due to a malware attack.
The breach, which exploited vulnerabilities in the exchange’s infrastructure, serves as a stark reminder of the risks posed by malicious software in the Web3 ecosystem.
Other notable incidents included attacks on various DeFi protocols, where hackers exploited smart contract vulnerabilities and misconfigurations to siphon funds.
The report details that the $147 million in total losses stemmed from 13 distinct hacking events.
While the reportedly recovery of a significant amount of funds is seemingly a positive development, it represents only a fraction of the stolen funds, leaving a net loss of over $100 million.
SlowMist’s analysis attributes many of these incidents to common attack vectors, such as phishing, private key theft, and rug pulls.
These methods exploit both technical weaknesses as well as human error, highlighting the urgent need for improved security practices across the crypto and web3 industry.
In addition to hacks, phishing attacks remained a significant challenge.
Although none of these reported issues are a new development, it is still clear that more needs to be done to protect vulnerable consumers and safeguard the crypto space for bad actors, if the ecosystem wants a chance at growing in a sustainable manner.