TechFlow News, July 14, Dragonfly Managing Partner Haseeb Qureshi (@hosseeb) posted on X platform that two months have passed since OpenZeppelin founder Manuel Aráoz issued the "DeFi is completely insecure" warning, and data shows that the so-called "hacker doomsday" has not come true.
Data shows that the annualized amount stolen from DeFi in 2026 is lower than the total for all of 2025; even after excluding abnormal months (such as the Bybit hack incident, Drift and KelpDAO incidents) for comparison, the monthly stolen amount in 2026 remains lower than in 2025; after standardizing by TVL, the proportion of DeFi funds stolen in 2026 is also slightly lower than in 2025.
Haseeb pointed out that the current situation presents a structural feature of "increased number of attacks, decreased scale per incident"—attackers are mainly targeting small protocols and abandoned projects that cannot afford the cost of AI security hardening, while the security of large protocols that have completed AI code hardening has actually improved. He summarized, "The security per average dollar in DeFi is on par with a year ago, and storing funds in large protocols is likely safe."




