CoinDCX, India's largest cryptocurrency exchange, has confirmed a security breach resulting in the theft of $44 million in crypto. The compromise specifically targeted an internal operational account used for liquidity provisioning on a partner exchange. CoinDCX has reassured its 16 million users that all customer funds are safe and were not affectedby the incident.
The breach was initially brought to public attention by crypto security researcher ZachXBT, who reported approximately $44.2 million being drained from CoinDCX. The attacker reportedly funded the operation with 1 ETH from Tornado Cash, subsequently bridging a portion of the stolen funds from Solana to Ethereum. CoinDCX confirmed to TechCrunch that the stolen assets were routed through Solana-Ethereum bridges, consolidating into 4,443 Ethereum and 155,830 Solana, which currently remain dormant.
CoinDCX CEO Sumit Gupta addressed the incident on X, emphasizing that only an internal account was impacted and that customer assets remain secure. The exchange is actively collaborating with India's Computer Emergency Response Team (CERT-In) and partner exchanges to investigate the matter Heightened Security Measures Crucial for Crypto Exchanges
This incident underscores the ongoing importance of robust security and risk management practices within the cryptocurrency industry. While completely eliminating vulnerabilities in digital systems is challenging, implementing strong security measures is paramount for crypto exchanges.
Platforms such as Bybit and CoinDCX have unfortunately experienced hacks, while major exchanges like Binance, Coinbase, and MEXC have largely remained secure. These more resilient platforms often share common security practices, including:
● Separation of hot and cold wallets: Storing the majority of funds offline in "cold" wallets significantly mitigates the risk of large-scale theft.
● Multi-signature technology: Implementing multi-signature requirements for transactions adds an essential layer of security.
● Penetration Testing and Bug Bounty Programs: Regularly testing systems for vulnerabilities and incentivizing ethical hackers to identify flaws helps proactively strengthen security.
The broader crypto community consistently advocates for responsible reporting and transparency from exchanges in the event of an exploit, which helps to mitigate losses and build trust.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
