India’s largest cryptocurrency exchange, CoinDCX, faced a highly sophisticated cyberattack on July 19, 2025, resulting in a loss of $44.2 million. The breach occurred when attackers managed to gain access to one of the exchange’s operational wallets, draining it within a short timeframe. Despite the incident, CoinDCX confirmed that all customer assets remained secure, thanks to its robust security architecture.
The news of the breach surfaced nearly 17 hours later, when on-chain investigator ZachXBT alerted users through his Telegram channel about a possible security compromise.
Soon after, CoinDCX CEO Sumit Gupta addressed the situation on X, stating that an internal operational account used for liquidity management had been compromised. He reassured the community that no customer funds were impacted.
Investigations have since connected the attack to the Lazarus Group, a North Korean state-sponsored cybercrime organization notorious for targeting cryptocurrency exchanges worldwide.
The crypto community, however, criticized the exchange for the delay in public disclosure, noting that a platform that emphasizes transparency should not take over 18 hours to report a major $44 million breach. One user commented, “Your exchange claims to be transparent, yet it took 18 hours to disclose the $44 million hack.” [Link1]
Despite the criticism, the positive takeaway is that user funds remained protected, demonstrating that CoinDCX’s defense mechanisms worked as intended. However, the incident also highlighted how cybercriminals continue to exploit non-traditional vulnerabilities, specifically targeting internal systems and wallets used for liquidity and settlement operations.
You need to login in order to Like
