Ethereum News Today: CoinDCX Resumes Operations After $44 Million Hack

Generated by AI AgentCoin World
Sunday, Jul 20, 2025 10:22 am ET1min read
Aime RobotAime Summary

- India's largest crypto exchange CoinDCX resumes full operations after a $44M hack targeting an internal liquidity wallet via a sophisticated server-side exploit.

- On-chain investigator ZachXBT traced stolen funds to a Tornado Cash-funded address, with attackers bridging Solana to Ethereum to obscure transactions.

- CEO Sumit Gupta confirmed customer assets remained secure in cold wallets, emphasizing the breach only affected isolated operational accounts used for partner exchange liquidity.

- CoinDCX restored unrestricted INR withdrawals and trading while launching a bug bounty program to strengthen security and recover stolen assets through collaboration with partners.

- The incident highlights ongoing crypto exchange vulnerabilities, with CoinDCX emphasizing transparency and enhanced safeguards to rebuild trust in a market struggling with wallet hygiene and cyber threats.

India’s largest crypto exchange, CoinDCX, has resumed full operations after a significant security breach that resulted in a loss of $44 million. The breach, which targeted an internal liquidity wallet, was identified as a sophisticated server-side exploit. The exchange has since taken measures to address the vulnerability and has reopened Indian Rupee (INR) withdrawals, allowing users to access their funds without restrictions.

On-chain investigator ZachXBT first identified the attack approximately 17 hours prior to the exchange publicly disclosing the incident. ZachXBT traced the attack to an address funded with 1 ETH from Tornado Cash, with the attacker later bridging stolen funds from Solana (SOL) to Ethereum (ETH). Tel Aviv-based security firm Cyvers flagged the suspicious withdrawals, prompting manual attribution, as the affected CoinDCX hot wallet lacked public tags and proof-of-reserves documentation.

CoinDCX CEO Sumit Gupta addressed the community directly and mentioned that the breach did not impact customer assets. “No customer funds have been impacted. Your assets remain completely safe and protected in our secure cold wallet infrastructure,” Gupta stated in his initial disclosure. The hack affected an internal operational account used solely to provision liquidity on a partner exchange, not consumer deposit wallets. “The incident was quickly contained by isolating the affected operational account. Since our operational accounts are segregated from customer wallets, the exposure is only limited to this specific account,” Gupta explained.

Following the security incident, CoinDCX temporarily suspended certain operations while investigating the breach. The exchange has since restored all trading activities and INR withdrawal capabilities without restrictions. “Trading and INR withdrawals on CoinDCX are fully operational and running smoothly. You can withdraw your INR anytime — without restrictions,” Gupta announced. He urged users against panic selling, warning that hasty decisions “often leads to poor prices and unnecessary losses.”

The exchange is collaborating with its partner platform to block and recover stolen assets while implementing additional security measures. CoinDCX plans to launch a bug bounty program to incentivize security researchers to identify potential vulnerabilities. “Every security incident is a learning and we will learn from this and further strengthen our platform,” Gupta stated.

While no customer funds were touched, the CoinDCX hack—traced to a Tornado Cash-funded wallet—raises fresh questions about transparency and wallet hygiene in a market still building user trust. Now fully operational, CoinDCX is vowing stronger safeguards and a bug bounty program to stay ahead of the next exploit. The incident highlights the ongoing challenges faced by cryptocurrency exchanges in safeguarding user assets against increasingly sophisticated cyber threats. The exchange's prompt response and transparency in addressing the breach are essential in maintaining trust within the cryptocurrency community.

Comments



Add a public comment...
No comments

No comments yet