2025 Blockchain Security and AML Annual Report
Contents
Due to space limitations, this article only presents the key points from the analysis report. The full content can be downloaded via the PDF link at the end.
I. Overview
In 2025, the blockchain industry continued to evolve rapidly, with the combination of macroeconomic conditions, regulatory uncertainties, and intensified attack activity making the overall security landscape significantly more complex. Specifically, hacker groups and underground criminal networks have become highly professionalized, with North Korea–linked hackers frequently active. Information-stealing malware, private key hijacking, and social engineering phishing emerged as primary attack methods. Additionally, DeFi permission management and Meme token issuance repeatedly led to substantial losses. The service-oriented models of RaaS (Ransomware-as-a-Service) and MaaS (Malware-as-a-Service) have lowered the barrier to entry for cybercrime, enabling attackers without technical backgrounds to execute attacks rapidly. Meanwhile, underground money laundering systems have continued to mature, with Southeast Asian scam clusters, privacy tools, and mixing services forming multi-tiered fund flows.
On …
I. Overview
In 2025, the blockchain industry continued to evolve rapidly, with the combination of macroeconomic conditions, regulatory uncertainties, and intensified attack activity making the overall security landscape significantly more complex. Specifically, hacker groups and underground criminal networks have become highly professionalized, with North Korea–linked hackers frequently active. Information-stealing malware, private key hijacking, and social engineering phishing emerged as primary attack methods. Additionally, DeFi permission management and Meme token issuance repeatedly led to substantial losses. The service-oriented models of RaaS (Ransomware-as-a-Service) and MaaS (Malware-as-a-Service) have lowered the barrier to entry for cybercrime, enabling attackers without technical backgrounds to execute attacks rapidly. Meanwhile, underground money laundering systems have continued to mature, with Southeast Asian scam clusters, privacy tools, and mixing services forming multi-tiered fund flows.
On …