September saw total losses of $127.06 million from 20 crypto-related attacks, as reported by PeckShield.
Despite this being a 22% drop from August’s $163 million, the number of incidents increased. This indicates that cryptojacking remains a significant threat within the crypto ecosystem.
Cryptojacking in September – Cooling Down, But Risks Remain
As per PeckShield, September 2025 witnessed approximately 20 major attacks in the crypto sector, leading to estimated losses of $127.06 million. Notable incidents involved UXLINK ($44.14 million), SwissBorg ($41.5 million), Venus ($13.5 million, later recovered), Yala ($7.64 million), and GriffAI ($3 million).
Sponsored
Sponsored
Even though the total damages decreased, the frequency of hacks is climbing as attackers refine their techniques, leaving no part of the ecosystem completely secure.
Reflecting on August, it was a chaotic month with 16 significant security breaches that resulted in losses exceeding $163 million, a 15% rise from July. Q3 2025 recorded over $432 million in losses from 53 hacks, underscoring that the threat posed by cryptojacking in September remains ongoing.
Growing Pressure on RWA Projects
As reported by BeInCrypto, a rising trend of attacks on RWA projects has been noted, causing approximately $14.6 million in damages during the first half of 2025. As these projects connect on-chain and off-chain assets, they create additional vulnerabilities for attackers.
The RWA sector is thriving, with on-chain value reaching $32.32 billion, marking an 11.76% increase over the past month.
While RWA projects claim to enhance “security and transparency” to attract traditional investors, the intricate nature of merging blockchain with real-world assets has inadvertently opened up more avenues for cybercriminals.
If this trajectory persists, confidence in the RWA sector—recognized as a key growth driver in the crypto market—may waver. Consequently, implementing independent security audits, multi-layer protections like multisig and timelocks, and ongoing on-chain monitoring will be essential in preserving institutional investor trust against potential cryptojacking incidents reminiscent of September.