Indian crypto exchange CoinDCX was reportedly exploited for approximately $44.2 million, according to blockchain sleuth ZachXBT and security firm Cyvers.
The exchange’s CEO confirmed that an internal wallet has been compromised. However, he stated that customer funds remain safe.
CoinDCX Hack traced back to Tornado Cash funding
ZachXBT reported the incident today stating that an attacker address received 1 ETH via Tornado Cash, then went on to bridge funds from Solana to Ethereum.
The flow of assets suggests a coordinated cross-chain laundering strategy.
SponsoredMeanwhile, on-chain data confirms the fund movement across multiple addresses and protocols. The compromised wallet was not part of CoinDCX’s published proof-of-reserve reports, requiring manual attribution.
Cyvers discussed about this hack in an exclusive commentary with BeInCrypto.
“This hack is part of a recent wave of exchange breaches – including Bybit, WazirX, and others – are stark reminders that centralized platforms remain prime targets for sophisticated access control attacks. In Q2 2024 alone, over 65% of losses in Web3 originated from CEX-related incidents, with nearly $500 million lost due to wallet access breaches. These are not isolated events – they’re systemic weaknesses. We urge exchanges to rethink their security posture and move beyond reactive defenses. Real-time wallet monitoring and preemptive solutions like Cyvers’ Threat Interceptor are no longer optional – they’re essential to ensure your platform doesn’t become the next headline.” said Meir Dolev, Cyvers CTO
CoinDCX Confirms Breach, Says User Funds Are Safe
CoinDCX Co-founder and CEO Sumit Gupta acknowledged the incident hours after ZachXBT’s post. He clarified that the breach involved an internal wallet used for liquidity on a partner exchange, not a user-facing wallet.
According to the statement, the platform is investigating the server breach that led to the compromise. It has since frozen the affected internal systems and is working with security experts to contain the incident.
The breach was initially flagged by Cyvers Alerts, a blockchain threat intelligence firm that detected the suspicious withdrawals from CoinDCX’s hot wallet. The funds were quickly routed through multiple wallets, making tracing complex.
This is a developing story.
