Web3 security firm CertiK has reported that phishing attacks resulted in nearly $400 million in losses during the second quarter of 2025, marking them as the most significant threat in the period. Overall, Web3 security incidents in the first half of 2025 have cost nearly $2.5 billion, with net losses reaching $2.29 billion, surpassing the total losses of the previous year. While incidents of private key leaks have decreased and code vulnerability attacks have remained stable, vigilance is still required, particularly in light of major cases like the Cetus Protocol breach.