Recommended

#BTCCOGWEEK: Celebrate the Classics of Meme Coins
Crypto Deposit Make instant crypto transfers to your futures account
USDT-M Perpetual Futures Trade futures contracts settled in USDT
VIP Fee Discounts Enjoy different fee discounts based on your VIP level
Coin-M Perpetual Futures Trade futures contracts settled in cryptocurrency
Fiat Deposit Buy your favourite coins in seconds
Affiliates Invite friends & get rewarded
Convert Covert your crypto instantly
Support Centre Find our FAQs here
Announcements Find all our official announcements
BTCC Academy Learn about blockchain and crypto
News The latest trends in the crypto market

Promotions

Referral
Campaigns
Assets
Crypto Deposit
Fiat Deposit
Convert
Transfer
Withdraw
My vouchers
Fund history
Dashboard
Account Security
Identity verification
API Management
Transaction Report
Log out
Register
BTCC / BTCC Square / StellarMiner /
COINDCX CEO Confirms Internal Account Breach: $44.2M Drained in Sophisticated Attack

COINDCX CEO Confirms Internal Account Breach: $44.2M Drained in Sophisticated Attack

Author:
StellarMiner
Published:
2025-07-20 03:13:02
7
1


COINDCX, a leading Indian cryptocurrency exchange, faced a $44.2 million security breach involving an internal operational wallet. CEO Sumit Gupta confirmed the incident, emphasizing that no customer funds were impacted. The breach, linked to a "sophisticated server attack," was detected by blockchain security firm Cyvers. Here’s a deep dive into what happened, how the exchange responded, and why transparency matters in crypto security.

What Happened During the COINDCX Breach?

On July 19, 2025, blockchain security firm Cyvers flagged suspicious transactions tied to COINDCX’s internal wallet. Analyst Zach XBT publicly shared findings via Telegram, noting the hacker’s address received 1 ETH from Tornado Cash before bridging stolen solana funds to Ethereum. The attacker’s addresses included:

  • Solana: 6perrbtz28xofajpjzzekxnpcpr5xhysqcmjhqfdp22n
  • Ethereum: 0xef0c5b9e0e9643937d75c229648158584a8cd8d

Gupta later clarified the compromised wallet was solely for liquidity provisioning on a partner exchange, not customer holdings.

How Did COINDCX Respond to the Attack?

Within hours, COINDCX’s team isolated the breached account and engaged cybersecurity experts to trace fund movements. Gupta assured users via X (formerly Twitter):

"No customer funds were impacted. Assets remain secure in our cold wallet infrastructure. INR withdrawals and trading are fully operational."

The exchange is covering losses from its treasury and collaborating with the unnamed partner exchange to investigate.

Why Transparency Matters in Crypto Security

This incident highlights the growing sophistication of attacks targeting centralized exchanges. While COINDCX’s quick disclosure aligns with Web3 values, some users questioned the 17-hour delay between the hack and public acknowledgment. As one BTCC analyst noted, "Proactive communication builds trust—especially when $44 million vanishes."

Lessons Learned and Future Protections

COINDCX plans to launch a bug bounty program and enhance server defenses. Gupta framed this as a wake-up call: "Every dent is a learning opportunity. We’ll emerge stronger." The exchange commits to real-time updates, setting a precedent for crisis management in India’s crypto sector.

FAQ: COINDCX Security Breach Explained

Were customer funds stolen in the COINDCX hack?

No. The breached wallet was an internal operational account used for liquidity provisioning, not customer deposits.

How much was stolen from COINDCX?

Approximately $44.2 million in crypto assets, per Cyvers’ analysis.

Can users still trade on COINDCX after the hack?

Yes. The exchange confirmed all trading and INR withdrawal services remain functional.

|Square

Get the BTCC app to start your crypto journey

Download on the App Store GEI IT ON Google Play

Get started today Scan to join our 100M+ users

Exchange for a better future

Products
Services
Guides
About Us
Terms & Agreement
Customer Service
Social Media

Risk warning: Digital asset trading is an emerging industry with bright prospects, but it also comes with huge risks as it is a new market. The risk is especially high in leveraged trading since leverage magnifies profits and amplifies risks at the same time. Please make sure you have a thorough understanding of the industry, the leveraged trading models, and the rules of trading before opening a position. Additionally, we strongly recommend that you identify your risk tolerance and only accept the risks you are willing to take. All trading involves risks, so you must be cautious when entering the market.

The world’s longest-running cryptocurrency exchange since 2011 © 2011 - 2025 BTCC.com. All rights reserved