Digital Harms Tracker
Back to all incidents
Cryptocurrencyblockchain hack

Axie Infinity Ronin Bridge Hacked for $625 Million in Largest Crypto Theft to Date

Mar 30, 2022
Global (Ethereum/Ronin blockchain)
Source

Incident Details

Harm Domain
Cryptocurrency
Harm Types
blockchain hack, bridge exploit, theft, security failure
Fatality
No
Minor Involved
No
Incident Date
Mar 23, 2022
Platforms: Ronin Network, Axie Infinity
Companies: Sky Mavis

Summary

On March 23, 2022, hackers stole approximately $625 million in Ethereum and USDC from the Ronin Network, a blockchain sidechain supporting the Axie Infinity play-to-earn game. The attackers (later attributed to North Korea's Lazarus Group by the US Treasury) exploited compromised validator private keys. The breach wasn't discovered until March 29 when a user reported being unable to withdraw funds. Thousands of play-to-earn players, particularly in the Philippines and Southeast Asia, who relied on Axie Infinity income during COVID had funds trapped or lost. Sky Mavis pledged to reimburse users from a fundraising round, but repayments were partial. The hack remains one of the largest crypto thefts in history.

Related Incidents

Cryptocurrencyinvestment_fraud

News Explorer — Ethereum User Loses $600K in Address Poisoning Scam - Decrypt

Feb 17, 2026Unknown

An Ethereum user lost $600,000 on February 17, 2024, after falling victim to an address poisoning scam. This crypto scam involved fraudsters sending spam transactions from similar-looking addresses to confuse the user during cryptocurrency transfers. The incident highlights a common method used by scammers to cause significant financial losses for users.

Platforms: Ethereum
Cryptocurrencyinvestment_fraud

Weekly Blockchain Blog - February 2026 #3 | BakerHostetler - JDSupra

Feb 17, 2026Cambodia

Daren Li, a dual national, was sentenced in absentia to 20 years in prison for laundering more than $73 million obtained through an international cryptocurrency investment scheme. The scam operated from centers in Cambodia. Li had previously pleaded guilty in November 2024 but fled supervision in December 2025. The U.S. Department of Justice announced his sentencing.

Cryptocurrencyexchange hack

WazirX Exchange Hacked for $230 Million by North Korea's Lazarus Group; Indian Customers' Funds Frozen

Jul 18, 2024India (WazirX exchange users)

On July 18, 2024, hackers drained approximately $230 million — nearly half of WazirX's total assets — from the Indian crypto exchange's multi-signature wallet. Blockchain analysts including Elliptic attributed the attack to North Korea's Lazarus Group. WazirX suspended all withdrawals following the hack, freezing funds for millions of Indian users. The exchange filed for restructuring in Singapore and faced lawsuits in India. The hack illustrated the continued vulnerability of centralized exchanges to state-sponsored cryptocurrency theft, and the devastating impact on retail users who keep assets on exchanges.

Platforms: WazirX