The fact is that you cannot verifiably compare those numbers to traditional finance hacks, because they're simply not transparently reported/cleaned up before the damage can be noticed.
Don't fault a good in-built bug bounty for bringing about the next generation of strong, distributed infrastructure.
Traditional finance hacks usually abuse tax / debt of large enough companies. Web3 finance hacks take all available money directly out of your personal account. That's a much worse situation for a normal user, because with a bank you can often say "this is wrong, fix this" and the bank is insured enough that they will. Compare to the situation in Venezuela where the in-built bug bounty currently takes a significant amount of people's savings and they have no way to revert it.
The problem is that we've given up our own knowledge and abilities as consumers to complete fucking snakes as people,
and they regularly abandon their duties to keep us safe, with varying degrees of recompense/Justice actually being served when the consumer gets screwed (less every year, from what I can see).
At least with SuperNewFastDeFi (vs Coinbase), I know I'm using a beta and could get screwed, as opposed to my current "stable, traditional financial institution" which just recently turned off everyone's 2FA during an infra migration, and acted like that's totally okay.
I know my home loan etc won't be T-shirt cannon'd off to even worse snakes as soon as I've left the parking lot.
Many forms of security and agency improvements this shift is bringing to the forefront now, and this community, for whatever reasons, sleeps on.
If you want to be that precise, then you are the 1/population part of the payback. Yes, collectively we pay the tiny fraction of insurance on each of us not having all savings wiped in a single hack.
Which happens as well for defi/crypto, but with no guarantees attached - you pay for the development/support with fees.
It's time to fix that.
Web 1.0: Read Web 2.0: Read/Write Web 3.0: Read/Write/Own