PANews reported on May 1 that according to Decrypt, CertiK's latest estimates show that the cryptocurrency sector lost about $364 million in April due to hacking, fraud and vulnerability exploits, of which the vast majority ($337 million) was related to phishing attacks. Most of the illegal gains came from a single incident in which the attacker used complex social engineering methods to steal 3,520 bitcoins from the wallet. In addition, the decentralized exchange KiloEX lost $7.5 million due to the "price oracle vulnerability", Loopscale was stolen $5.8 million, and the Ethereum expansion protocol ZKsync airdrop contract was siphoned off nearly $5.3 million, but all three platforms have recovered funds from white hat hackers. The loss in April increased significantly from March ($28.8 million), but it is still a small amount compared to the $1.5 billion loss caused by the North Korean hacker group Lazarus Group attacking Bybit in February. In view of the frequent phishing attacks, CertiK reminds crypto companies and investors to verify the authenticity of the website and smart contract before transferring money, and also recommends using cold wallets for storage and not sharing position information on social media.