April 2026 was one of the worst months in recent memory, as a large number of sophisticated hacks targeted the cryptocurrency ecosystem, with Decentralized Finance (DeFi) being hit the hardest. Security firm CertiK reported confirmed losses totaling approximately $651 million, including about $3.5 million from phishing attacks. This is the highest such monthly occurrence in more than 4 years and highlights the inherent risks associated with even the most well-managed DeFi projects.
DefiLlama tweeted yesterday:
The 4th month of the calendar year was rocked by two major exploits: the Solana-based perpetuals exchange Drift Protocol hack worth $250 million on the first of April, and, on the 18th, the KelpDAO breach of approximately $292–293 million. Both attacks were carried out by sophisticated automated setups, reportedly attributed to North Korea’s notorious Lazarus Group.
DeFi Hacks Cascade into Major Liquidity Crunch
While the hacks themselves were quite large, they triggered an avalanche of reactions from DeFi lending websites, prompting users to rush to withdraw their funds and causing a major liquidity crisis for those platforms. Aave, a top DeFi platform, was hit the hardest, with around $10 billion in withdrawals requested, causing aftershocks similar to a bank run.
There was a coalition-led bailout effort to help restore confidence in the rsETH coin, a digital token used as collateral on top DeFi platforms. But the problems didn’t stop there. The month also witnessed a string of smaller, less-noticed cyberattacks worth millions of dollars, which are a major cause for concern as well. They include wallet compromises, oracle issues, logic flaws, and phishing-related maneuvers.
The entire April hack saga was summarized by a user on X:
The Future
The layer-2 and layer-3 DeFi solutions took a major hit last month and have struggled to restore user confidence. As the industry tries to digest the fallout by proposing stronger multisig governance and infrastructure hardening, the truth is that cybersecurity, especially in a decentralized setting like crypto, is never resolved. It will always be a work in progress, and platforms need to adapt quickly enough or risk falling prey to future hacks.
One X user said in a reply:
Another user pointed out that the fault was in the operation of these so-called decentralized platforms and not underlying blockchain networks:
