Crypto post-mortem archive · Established 2026
What really happened, in structured form.
Crypto news writes the moment. Court filings live in PACER. On-chain forensics live on Etherscan. CryptoMortem is the place where all three converge — one structured record per incident, every claim cited, every recovery tracked through to distribution.
What we publish
Every claim sourced. Every event the same shape.
Rekt.news writes the post-mortem. CoinDesk writes the news. PACER holds the court filings. Wikipedia keeps a thin summary. None of them lets you do what an analyst actually needs: answer what really happened, where the money went, and how this compares to past failures of the same shape.
This archive does. One page per event. The timeline reads like a court docket. The on-chain flows link to the forensics. The recovery percentage updates as bankruptcy distributions land. Cross-links surface every event sharing an actor, attack vector, or structural failure.
Anatomy of a record
Five layers per event.
Hourly timeline
What happened, when, in source-cited steps. Pivotal moments highlighted; full chronology from first disclosure to final court ruling.
Who was involved
Victims, attackers, enablers, custodians, regulators — each entity linked, their role in the event tagged, their cumulative record viewable.
Structural failures
Each event tagged with the conditions that made it possible — no proof of reserves, oracle manipulation, stale delegation. Pattern library makes recurrence visible.
Recovery tracking
For resolved bankruptcies, the percentage of user funds returned. Updated as new distributions are confirmed by court filings.
Legal status
Verdicts, sentences, custodian assignments, ongoing proceedings. Linked to primary source filings where available.
Recent records
All events →Gnosis Pay Delay Module Exploit — June 2026
Gnosis Pay disclosed an active exploit affecting its delay module and card wallet infrastructure on June 1, 2026, then said the issue was being contained and all affected users…
Funds affected$0Gravity Bridge Halted After Reported $5.4M Exploit
Gravity Bridge, a Cosmos-Ethereum bridge, was reported exploited on 2026-05-31 for about $5.4 million; public reporting and analyst commentary pointed to a possible signing-key or…
Funds affected$5.4MDxSale BNB Chain Liquidity Exploit on May 29, 2026
DxSale lost about $7.3 million in a BNB Chain locker exploit that reportedly affected roughly 1,400 liquidity providers, after a prior ownership transfer and a withdrawal-loop…
Funds affected$7.3MUsers1KStakeDAO vsdCRV Key Compromise on Arbitrum
A suspected StakeDAO deployer-key compromise let an attacker redirect vsdCRV bridge settings, mint more than 5.4 trillion tokens on Arbitrum, and extract roughly $91,000 before…
Funds affected$91KSafe Wallet Third-Party Module Exploit in May 2026
A suspected external module tied to Safe wallet integrations drained about $3.2 million from 86 accounts across Ethereum and Base, while Safe Labs and Squid said their core…
Funds affected$3.2MUsers86Mantra OM Token Crash — April 2025
The OM token, native asset of the Mantra Chain, lost approximately 90 percent of its market value over the course of a few hours on 13 April 2025. The team attributed the collapse…
Funds affected$5.50BRecovered0.00%
Find what you need
Browse the archive by…
All events
Every catalogued record, newest first.
0By type
Hacks · Collapses · Depegs · Rugpulls · Regulatory.
77By entity
Exchanges, founders, attackers, regulators — and the events tied to each.
21By pattern
Structural failures that repeat: proof-of-reserves gaps, oracle manipulation, stale delegations.
For journalists & researchers
Every record is also an API.
Each event page exposes a JSON endpoint at /api/events/<slug>. The full archive is at /api/events. No registration, no rate limit on reasonable use, attribution appreciated.