The cryptocurrency industry's digital fortresses are being circumvented by a primitive tool: the wrench. CertiK’s 2026 report reveals that physical coercion, known as a 'wrench attack,' is the fastest-growing threat to crypto holders. In 2025, there were 72 verified incidents globally, a 75% increase from the prior year, with financial losses topping $40 million. In just the first four months of 2026, 34 attacks have already caused over $100 million in losses.
Unlike hacking code, these attacks target the human element. Criminals use open-source intelligence, public social media, and leaked financial data to select victims. Europe is the epicenter, accounting for 40% of 2025’s attacks, with France heavily targeted. A new, disturbing trend involves data brokers: a French tax official was allegedly caught selling crypto-owner identities to criminal networks.
Attackers are also targeting family members for leverage. The report details a case where an elderly American woman was abducted in a Bitcoin ransom attempt. In the UK, a prominent crypto figure was assaulted and forced to surrender millions in assets, which were quickly laundered via privacy coins. The report notes that the foot soldiers are often recruited via Telegram apps, while masterminds operate from abroad, complicating law enforcement efforts.
CertiK experts advise crypto holders to prioritize operational security: reduce public exposure, use multisignature wallets, implant withdrawal delays, and consider 'duress' accounts. The industry's focus on digital defenses is necessary, but the report warns that the greatest vulnerability now lies with the people holding the keys.