Crypto Crime Hits $158B Record

Illicit crypto transactions soared to a record of at least $154 billion in 2025, a 162% increase from the previous year, with revised figures expected to be even higher. This surge wasn't primarily driven by a spike in everyday scams, but by a massive 694% increase in funds flowing to sanctioned entities, totaling approximately $104 billion. Nation-states are increasingly using cryptocurrency not just for laundering money, but for executing large-scale cross-border trade and evading international sanctions. Stablecoins have become the dominant vehicle for these illicit activities, accounting for 84% of all illicit transaction volume in 2025. Bitcoin's role in criminal transactions has significantly diminished, now representing just 7% of the total. This shift is due to criminals preferring the stability and liquidity of assets pegged to fiat currencies for their operations. State-sponsored hacking groups remain a major threat, with North Korean actors stealing over $2 billion in 2025 alone. This includes the largest single crypto heist ever recorded: a $1.5 billion breach of the Bybit exchange. These groups use sophisticated methods to launder the stolen funds, including "chain hopping" — rapidly moving assets across different blockchains to obscure their origin. Laundering techniques have evolved far beyond simple mixers. Criminal networks now employ a range of sophisticated methods, including layering transactions across hundreds of wallets, using decentralized finance (DeFi) platforms with weak identity verification, and exploiting NFTs by buying and selling them at inflated prices to legitimize funds. Organized scam operations have also become industrialized, with some using forced-labor compounds to carry out large-scale fraud. While DeFi hacks still occur, a growing trend is the targeting of individual wallets through "wrench attacks," where criminals use physical violence or coercion to force victims to hand over their credentials. These physical attacks nearly doubled in 2025, highlighting a shift in criminal tactics from purely digital exploits to real-world violence. In response to the rising threats, institutional security standards are becoming more rigorous, mirroring those in traditional finance. Qualified custodians are now required to segregate client funds from their own, a direct lesson from the collapse of firms like FTX. This is enforced by regulations such as the SEC's Safeguarding Rule and the EU's MiCA framework. The technological backbone of institutional security now relies on multi-party computation (MPC) and multi-signature wallets. MPC technology splits a private key into multiple parts, eliminating any single point of failure, while multi-sig wallets require authorization from several parties before a transaction can be executed. The majority of institutional assets, often 95% or more, are held in "cold storage," meaning the private keys are kept completely offline and physically secured. This is complemented by regular, independent security audits like SOC 2 examinations to verify that security controls are functioning correctly, and comprehensive insurance policies to protect against potential losses.