On Thursday, the Office of Cybersecurity and Critical Infrastructure Protection at the US Treasury announced that it would expand its cybersecurity threat identification program to include digital asset companies. According to the Treasury’s statement, blockchain companies choosing to participate in the program will receive the same cybersecurity threat warning information as traditional financial institutions for free.

Corey Wilson, the deputy assistant secretary for cybersecurity affairs at OCCIP, said: “Cyber threats targeting digital asset platforms are increasing in frequency and complexity.” This move aligns with the policy recommendations outlined in the “Strengthening America’s Leadership in Digital Finance Technologies” report released by the Donald Trump administration in July 2025. Cointelegraph attempted to contact the US Treasury, but had not received a response at the time of publishing this article.

Addressing these evolving cybersecurity threats has become an urgent task—just in the first quarter of this year, decentralized finance platforms suffered financial losses amounting to nearly $169 million due to hacker attacks. Crypto projects and their users are increasingly facing these changing threats, which can be carried out through social engineering techniques or by hackers affiliated with states, including the Lazarus Group linked to North Korea.

At the beginning of this month, the decentralized cryptocurrency exchange Drift Protocol was attacked by hackers allegedly associated with North Korea, resulting in losses of up to $280 million. According to a preliminary incident report released by Drift Protocol, over the course of several months, the hackers deployed malware on the Drift team’s development machines to steal cryptocurrencies, and this malware was activated during the actual attack in April.

The report indicated that the person who initially contacted the Drift team at an industry conference was not a North Korean citizen. A group of blockchain cybersecurity experts believes that this attack was likely carried out by the same hacker group that also attacked Radiant Capital’s decentralized finance platform in October 2024. Monitored by Woofun AI, such long-term, infrastructure-targeted attacks led by national-level hacker groups are far from isolated incidents.