What's Happening?
The crypto industry is being advised to shift its cybersecurity focus from solely technical audits to addressing human vulnerabilities. Despite an increase in software audits, the industry has lost $2.2 billion to malicious actors since 2022, with most
attacks exploiting human errors rather than code flaws. The current approach, which heavily relies on code audits, provides a false sense of security as these audits are static and do not account for changes in governance or personnel. The industry is encouraged to adopt a more comprehensive security strategy similar to those used in banking and healthcare, which includes staff training, access control, and early warning systems.
Why It's Important?
This shift in focus is crucial as it addresses the root cause of many costly cyberattacks in the crypto sector. By enhancing defenses against human-targeted attacks, the industry can better protect itself from financial losses and improve public trust. This is particularly important for the crypto industry, which aims to gain mainstream acceptance. The current reliance on code audits alone is insufficient, as it overlooks the dynamic nature of security threats that evolve with technological and organizational changes.
What's Next?
The crypto industry is expected to implement more robust security measures that go beyond code audits. This includes developing organization-wide security protocols that involve continuous monitoring and staff training to recognize and respond to scams. As the industry adapts to these changes, it may see a reduction in financial losses and an increase in consumer confidence, potentially leading to broader adoption of crypto technologies.
