Símbolos

CoinDCX Employee Targets Fake Job Offer Leading to $44 Million Cybertheft

Generado por agente de IACoin World

jueves, 31 de julio de 2025, 5:51 am ET1 min de lectura

Indian crypto exchange CoinDCX has confirmed a $44 million cybertheft, with police attributing the breach to a sophisticated social engineering attack. According to Bengaluru police, a 30-year-old employee, Rahul Agarwal, was lured into installing malware under the pretense of a part-time job offer. The malware enabled hackers to access internal wallet systems operated by Neblio Technologies, CoinDCX’s parent company. Agarwal, now in custody, claims he was unaware of the scheme until confronted during an internal investigation. His company-issued device has been seized as part of the ongoing probe [1].

The attack exploited corporate access credentials, which allowed unauthorized withdrawals to be executed within the exchange’s internal operational wallet. CoinDCX CEO Sumit Gupta previously stated the breach was tied to internal systems and confirmed the company would bear the financial loss. The firm has also reassured users that their funds were not compromised [1].

Authorities have not yet disclosed where the stolen assets were transferred or whether recovery is possible. Investigations are also examining the potential involvement of foreign actors, although no group has officially claimed responsibility. This marks the second major cyberattack on an Indian crypto exchange in the past year. In July 2024, WazirX suffered a $230 million exploit attributed to North Korea’s Lazarus group, with restructuring efforts stalled following a recent Singapore court decision [1].

In an effort to recover the stolen funds, CoinDCX co-founder Neeraj Khandelwal has announced a “Recovery Bounty Programme,” offering a 25% reward—approximately $11 million—to anyone who assists in tracking down the assets. The initiative reflects the company’s proactive stance amid ongoing legal and regulatory scrutiny [1].

The incident highlights the growing sophistication of cyberattacks in the cryptocurrency sector, particularly through employee-targeted social engineering tactics. It underscores the urgent need for robust internal security protocols and employee training to prevent similar breaches in the future. As investigations continue, the case may set a precedent for how exchanges respond to and recover from large-scale cyber incidents.

Source: [1] [Hackers used fake job offer to target CoinDCX employee, steal $44 million: report](https://www.theblock.co/post/364993/coindcx-employee-arrested-police-crypto-theft?utm_source=rss&utm_medium=rss)

Coin World

Comentarios

﻿

Add a public comment...

Aún no hay comentarios

Divulgación editorial y transparencia de la IA: Ainvest News utiliza tecnología avanzada de Modelos de Lenguaje Largo (LLM) para sintetizar y analizar datos de mercado en tiempo real. Para garantizar los más altos estándares de integridad, cada artículo se somete a un riguroso proceso de verificación con participación humana. Mientras la IA asiste en el procesamiento de datos y la redacción inicial, un miembro editorial profesional de Ainvest revisa, verifica y aprueba de forma independiente todo el contenido para garantizar su precisión y cumplimiento con los estándares editoriales de Ainvest Fintech Inc. Esta supervisión humana está diseñada para mitigar las alucinaciones de la IA y garantizar el contexto financiero. Advertencia sobre inversiones: Este contenido se proporciona únicamente con fines informativos y no constituye asesoramiento profesional de inversión, legal o financiero. Los mercados conllevan riesgos inherentes. Se recomienda a los usuarios que realicen una investigación independiente o consulten a un asesor financiero certificado antes de tomar cualquier decisión. Ainvest Fintech Inc. se exime de toda responsabilidad por las acciones tomadas con base en esta información. ¿Encontró un error? Reportar un problema