WhiteBIT Report: Social Engineering Scams Account for 40.8% of Crypto Security Incidents, Becoming the Industry’s Primary Threat

According to ChainCatcher, citing CoinDesk and a 2025 annual security report released by a certain crypto trading platform, social engineering scams (including fake investments, identity impersonation, etc.) have become the primary security threat faced by crypto users, accounting for 40.8% of all security incidents this year.

The report points out that technical wallet attacks (such as phishing, malware, and keyloggers) rank second, accounting for 33.7%. More than 10% of scams are carried out via instant messaging platforms such as Telegram, with common forms including “spamming scams” or impersonated channels. The compliance team of the exchange stated that most threats target “human behavioral vulnerabilities” rather than technical flaws, urging users to take proactive defense measures, including enabling two-factor authentication, carefully verifying URLs, not sharing sensitive data, and prioritizing the use of secure exchanges and cold wallets to store assets. The report also mentions that in the first half of this year, losses from crypto-related crimes reached nearly $2.5 billion, with a certain exchange’s hacking incident (believed to be orchestrated by North Korea’s Lazarus Group) becoming the largest crypto theft in history, resulting in losses of about $1.5 billion.