Solana News Today: Upbit's $38M Hack Exposes Flaw in Crypto's Hot Wallet Reliance

Generated by AI AgentCoin WorldReviewed byRodder Shi
Monday, Dec 1, 2025 12:50 pm ET2min read
Speaker 1
Speaker 2
AI Podcast:Your News, Now Playing
Aime RobotAime Summary

- Upbit pledges full reimbursement after $36–$38M

Solana
network breach, marking its largest security incident.

- Hack involved unauthorized Solana-based asset withdrawals, with stolen funds suspected of North Korea's Lazarus group.

- Regulatory scrutiny intensifies as breach occurs ahead of a $10.3B merger, prompting investigations into security lapses.

- South Korea expands crypto regulations, including stricter AML rules and travel rule extensions to curb money laundering.

- Market reactions mixed: Solana dips, but broader crypto markets show limited contagion as Korean traders drive altcoin rallies.

Upbit, South Korea's largest cryptocurrency exchange, has pledged to reimburse customers in full after a $36–$38 million breach of its

Solana
network, marking one of the platform's most significant security incidents to date. The hack, detected on November 27, involved unauthorized withdrawals of Solana-based assets, including SOL,
USDC
, and several decentralized finance (DeFi) and
meme
tokens, prompting an immediate freeze on Solana deposits and withdrawals. The exchange confirmed the stolen funds were transferred to an unidentified wallet, with CEO Oh Kyung-seok stating
Upbit will absorb the entire loss
from corporate reserves to protect user assets.

The breach has intensified scrutiny over hot wallet vulnerabilities, a persistent challenge in crypto exchanges. Hot wallets, which remain connected to the internet for rapid trading, are inherently susceptible to attacks despite their functional necessity.

Security experts note
that while cold storage remains secure, the incident underscores systemic risks in real-time liquidity management. North Korea's Lazarus hacking group is suspected of orchestrating the attack, with authorities citing similarities to a
2019 breach
where $58 million in
Ethereum
was stolen. The timing—occurring hours before a press event announcing a $10.3 billion merger between Upbit's parent company, Dunamu, and Naver Corp.—has raised concerns about potential deliberate disruption
according to reports
.

Regulatory pressures compound Upbit's challenges. South Korea's Financial Intelligence Unit is investigating 600,000 potential Know Your Customer (KYC) violations at the exchange, while the Fair Trade Commission probes alleged antitrust abuses

according to data
. Meanwhile, the Financial Services Commission (FSC) announced plans to expand its crypto Travel Rule to cover transactions under 1 million won ($680),
closing a loophole
that allowed users to bypass identity checks by fragmenting transfers. These measures aim to curb money laundering and tax evasion, aligning with global anti-money laundering (AML) standards.

Market reactions to the hack have been mixed. Solana's price dipped 2.59% in 24 hours to $188, though analysts argue the decline reflects exchange-specific risks rather than protocol-level vulnerabilities. Notably, Korean traders have driven altcoin rallies as arbitrage bots halted post-hack, with local buy orders exerting upward pressure on tokens like

BONK
and
RENDER
according to analysis
. Upbit's pause in Solana services has also disrupted liquidity flows, though broader crypto markets have shown limited contagion,
with Bitcoin and Ethereum
experiencing minor declines.

The incident threatens to derail Dunamu's merger with Naver, now under regulatory and investigative review. South Korean authorities have launched on-site inspections to assess security lapses, while Dunamu faces a record 35.2 billion won ($28.5 million) regulatory fine for past compliance failures

according to reports
. This adds to a year of turbulence for the exchange, which previously faced a
2025 Ethereum heist
in February 2025.

Looking ahead, Upbit has not provided a timeline for resuming Solana operations but emphasized a commitment to enhancing wallet security and collaborating with regulators

according to statements
. The FSC's impending AML reforms, including bans on high-risk offshore exchanges and stricter VASP licensing,
may further reshape
South Korea's crypto landscape. For now, the focus remains on mitigating immediate damage while navigating a regulatory environment increasingly intolerant of operational shortfalls.