The CertiK Hack3d: H1 2026 Report is out.
At first glance, losses appear down 46.8%.
But the numbers can be misleading.
Remove one historic outlier, and H1 2026 losses were actually ~28% higher than the comparable period a year earlier.
The report explores the trends behind the numbers, the attack vectors driving losses, and what they reveal about the evolving Web3 security landscape.
Read the full report:
https://t.co/7NsopFHccQ
To the security researchers reading this: you deserve better than the spam queue.
You know the cycle. You find a valid critical. The project disputes severity. The payout drags for months. Meanwhile open platforms bury real findings under thousands of junk submissions.
That's the exact problem CertiK Hunt launched to kill.
Invite-only, so signal beats volume. Programs and researchers both vetted. And the part that matters most: every program's scope and severity terms are defined up front — built on CertiK's industry-standard severity framework — so you know exactly how a finding gets classified before you commit a single hour.
One week in: 300+ researcher applications, first program live, first reports already in triage.
On July 15, the team behind Hunt presents at our Manhattan HQ — and takes questions face to face.
So, researchers: what's the one policy that would make you commit your best hours to a platform?
Drop it below. I'll put your answers in front of the team on the 15th — and tag you with what they say.
Want to ask them yourself? RSVP: https://t.co/akB6kiNb8v
Strong code is only half of building a resilient Web3 project.
That's why we've partnered with @8BlocksLabs, a token economy design and Web3 strategy firm, to help teams strengthen the other half.
Security tells you whether your infrastructure is resilient. It doesn't tell you whether your token model supports sustainable network participation. A protocol can pass every audit and still face challenges if its tokenomics don't align incentives with long-term utility. These are different problems that deserve different expertise.
What CertiK brings
• smart contract audits and formal verification
• security assessments across the protocol
• continuous monitoring that runs after launch
What 8Blocks brings
• token models where demand comes from real usage
• economic logic tested before launch
• go-to-market and investor readiness
We secure the foundation. 8Blocks helps design the economic layer that supports it. Together, we help projects reduce gaps between security, token design, and long-term ecosystem resilience.
3 days to go until @WebX_Asia! 🇯🇵
We'll be at Booth S-20 as a Silver Sponsor, ready to discuss smart contract security, audits, AI-powered security, and Web3 risk management.
📍 The Prince Park Tower Tokyo
📅 July 13–14 | 9:00–18:00
Book a meeting before our schedule fills up:
https://t.co/YDz3VVtM19
Security intelligence is becoming agent-native.
CertiK is now callable on @wallet’s https://t.co/Q6rOvHoscd, enabling agents to check token risk, retrieve Skynet Scores, and trace EVM transactions before funds move. A meaningful step toward safer, automated onchain activity.
CertiK is now callable on https://t.co/ys0cFrzsYr.
Agents can run token risk checks, retrieve Skynet Scores, and trace EVM transactions before moving funds - with pay-per-check access.
Hire @CertiK or list your own agent: https://t.co/V57nHuuLt5
Meet the first Hunters on CertiK Hunt.
Our first wave of invite-only security researchers has joined the platform. Selected for their technical expertise and proven track record.
More Hunters. More programs. Coming soon.
Two years ago, for @CertiK, I wrote one of the first documented reports on wrench attacks.
Today I've authored the "Coercion & Duress" framework for @_SEAL_Org.
🙏 Now steward for this section. TY @_SEAL_Org .
Link 👇
https://t.co/60PxotE37g
🇦🇪 Abu Dhabi is strengthening its Web3 ecosystem.
@CertiK—having identified 117K+ vulnerabilities and protect $600B+ in digital assets—has joined @Hub71AD as a preferred security partner.
The partnership includes a $200K subsidy program for startups.https://t.co/An8NOmRJhN
We're excited to be a Silver Sponsor of @WebX_Asia 2026!🇯🇵
Visit CertiK at Booth S-20 to see live demos of our AI-powered security tools, CertiK Compliance, and Penetration Testing solutions.
📍 The Prince Park Tower Tokyo
📅 July 13–14, 2026
Book a meeting with our team: https://t.co/YDz3VVtM19
Excited to join @blockchain_rio 2026 as a Titanium Sponsor.
Looking forward to connecting with builders, enterprises, and the broader Web3 community to discuss the future of blockchain security and AI-powered risk management.
See you in Rio! 🇧🇷
We are thrilled to announce CertiK as a Titanium Sponsor of Blockchain Rio 2026!
As the world’s largest Web3 security provider, they secure over $600B in digital assets with AI-powered risk management.
Join us on August 12-13 at ExpoRio!
The @goldfishggbr bug bounty program is now live on CertiK Hunt!🎯
The first security reports have already been submitted and are now being triaged.
We’ve also received 300+ applications from security researchers eager to join the platform. Access is being rolled out in phases, with approved researchers invited first as we validate the platform and onboard additional programs.
We’re just getting started! Expect more bug bounty programs and additional researcher invites in the coming weeks.
Check out the program👇 https://t.co/Mc0q4Cmnay
Behind every headline is a trend.
Our latest video breaks down the key insights from the CertiK Hack3d: H1 2026 Report and what they reveal about the state of Web3 security.
We're opening the doors to our NYC office.
Join founders, developers, security researchers, and the CertiK team for an afternoon of security insights, product updates, networking, and great conversations.
Attendance is limited. Register below.
https://t.co/FPfEBtFBXR
The CertiK Hack3d: H1 2026 Report is out.
At first glance, losses appear down 46.8%.
But the numbers can be misleading.
Remove one historic outlier, and H1 2026 losses were actually ~28% higher than the comparable period a year earlier.
The report explores the trends behind the numbers, the attack vectors driving losses, and what they reveal about the evolving Web3 security landscape.
Read the full report:
https://t.co/7NsopFHccQ