Cryptocurrency stolen through hacks and scams reached $370.3 million in January, nearly quadrupling year on year and marking the highest monthly total in 11 months, according to CertiK.
CertiK said most of the losses came from a single social engineering incident in which one victim lost about $284 million, driving a 214% increase from December levels.
Phishing attacks accounted for the bulk of the damage, with roughly $311.3 million stolen across January from credential theft and related scams.
The total was the largest monthly loss since February 2025, when around $1.5 billion was stolen, largely due to the $1.4 billion hack of crypto exchange Bybit.
On a yearly basis, January’s losses rose more than 277% from the $98 million stolen in January 2025, while also far exceeding December’s $117.8 million, CertiK said.
Separately, PeckShield said the largest single hack of the month was the $28.9 million exploit of Step Finance, followed by a $26.4 million attack on Truebit and smaller exploits targeting SwapNet and Saga.
PeckShield added that 16 hacks in total caused $86 million in losses during January, slightly down from a year earlier but more than 13% higher than in December, highlighting persistent security risks across crypto markets.