Breach cyber

CoinDCX

Jul 20, 2025 1 min read
CoinDCX

Indian cryptocurrency exchange CoinDCX suffered a security breach, resulting in the theft of USD 44.2 million, or ₹378 crore. The incident involved unauthorized access to one of its accounts on a partner exchange. Despite the significant financial loss, the company assured that customer funds remained unaffected and safe, as the compromise was limited to an internal operational account. The total exposure is being absorbed entirely by CoinDCX using the company's treasury reserves. The breach was detected by the company's security systems and was later flagged by blockchain investigator ZachXBT.

Source: https://www.livemint.com/companies/news/coindcx-hit-by-usd-44-2-mn-security-breach-founders-say-customer-funds-unaffected-safe-11753013406110.html

TPRM report: https://scoringcyber.rankiteo.com/company/coindcx

"id": "coi703072025",
"linkid": "coindcx",
"type": "Breach",
"date": "7/2025",
"severity": "100",
"impact": "",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Financial Services',
                        'location': 'India',
                        'name': 'CoinDCX',
                        'type': 'Cryptocurrency Exchange'}],
 'attack_vector': 'Sophisticated Server Breach',
 'date_detected': '2023-07-19T04:00:00Z',
 'date_publicly_disclosed': '2023-07-20',
 'description': 'CoinDCX suffered a security breach resulting in the theft of '
                'USD 44.2 million from an internal operational account. The '
                'breach was detected on July 19, 2023, at 4 AM IST. The '
                'company assured that customer funds were unaffected and that '
                "the loss would be covered by the company's treasury reserves.",
 'impact': {'brand_reputation_impact': 'Mixed reactions on social media',
            'customer_complaints': 'Concerns over security and transparency',
            'downtime': 'Several hours',
            'financial_loss': 'USD 44.2 million',
            'operational_impact': 'Portfolio APIs became unresponsive',
            'systems_affected': ['Internal Operational Accounts',
                                 'Portfolio APIs']},
 'initial_access_broker': {'entry_point': 'Internal Operational Account'},
 'investigation_status': 'Ongoing',
 'motivation': 'Financial Gain',
 'references': [{'date_accessed': '2023-07-20', 'source': 'PTI'}],
 'regulatory_compliance': {'regulatory_notifications': 'CERT-In'},
 'response': {'communication_strategy': ['Public disclosure',
                                         'Social media updates'],
              'containment_measures': 'Isolated affected infrastructure',
              'law_enforcement_notified': ['CERT-In'],
              'recovery_measures': 'Portfolio APIs restored',
              'third_party_assistance': ['Two globally reputed security '
                                         'agencies']},
 'title': 'CoinDCX Security Breach',
 'type': 'Cryptocurrency Theft'}
Published by
Jeremy C
Jeremy C
You might also like
Breach cyber

5àSec

public 1 min read
The company 5àSec has faced a significant data breach where the leadership has downplayed the impact of publishing databases for…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.