$44.2 Million Drained from CoinDCX Crypto Exchange in the Biggest Crypto Heist of 2025
CoinDCX, one of the largest cryptocurrency exchanges in India, disclosed a significant security breach. Hackers stole approximately $44.2 million when they obtained access to one of the company's internal accounts. This account was available to facilitate trading in an orderly manner by providing liquidity. X
Well-known hacker ZachXBT first noticed this problem. He discovered the breach 17 hours after it occurred. CoinDCX quickly quarantined the impacted account and prevented further loss.
The exchange confirmed that the wallets containing users' funds were not impacted. Existing users can still withdraw funds and deposit funds to trade. As a precaution, the platform temporarily had disabled its Web3 mode, meaning users can access over 50,000 decentralized finance (DeFi) tokens. The feature was later restored.
The company will cover the entire loss using its own funds, CoinDCX CEO Sumit Gupta said. "No customer funds were lost. Our treasury is capable enough to bear this," Gupta wrote in a social media post. And their in-house team, working with outside cybersecurity experts, is trying to figure out how the hack occurred and where the stolen funds have ended up, he added.
This is one of the biggest crypto hacks of 2025. Hackers have taken more than $2 billion in cryptocurrencies so far this year, according to a report from Chainalysis. The increasingly large sample is generating some serious concerns about the security of the cryptocurrency exchanges.
To further enhance security on the platform, CoinDCX intends to roll out a bug bounty program. The program will pay by-the-book hackers who report weaknesses before they're used to loot the system. The platform is also working together with partner platforms to monitor and recover the stolen funds.
However, despite the setback, CoinDCX has announced that user funds are safe and operations are normal. The company says it's still committed to transparency and bolstering its systems against future threats.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
International Business Times
23-07-2025
- International Business Times
CoinDCX Suffers $44 Million Internal Breach, Offers $11 Million Bounty in Major Crypto Security Incident
In one of the most serious cryptocurrency security incidents to date, CoinDCX has disclosed a $44 million breach involving its internal operational accounts. The crypto exchange confirmed that the loss stemmed from internal systems and did not affect user wallets or customer funds. X Sumit Gupta, CEO of CoinDCX, addressed the incident publicly, assuring users that the company had absorbed the financial hit entirely from its treasury. "No user funds were compromised. We absorbed the loss through our own treasury," he said in a statement. Details about the nature of the breach remain unclear, with the company withholding specifics about the compromised systems or whether any external attackers were identified. In response to the attack, CoinDCX has announced a recovery bounty of up to $11 million aimed at attracting white-hat hackers and blockchain investigators who can help track the stolen funds and identify those responsible. This marks the second-largest publicly known breach of a crypto exchange in India, trailing only WazirX's 2022 hack that involved losses estimated at $230 million. Industry analysts suggest the CoinDCX case highlights growing concerns over internal security lapses at crypto platforms, particularly in treasury management. Experts emphasize that internal breaches often involve compromised credentials or insufficient access controls—issues not necessarily tied to regulatory failings but rather operational weaknesses. The incident has renewed focus on the need for Indian crypto platforms to adopt real-time audits, multi-signature wallets, and tighter access protocols. Although CoinDCX has not yet confirmed the involvement of blockchain forensics firms or law enforcement, the bounty move signals an attempt to crowdsource recovery efforts. Given that no customer assets were affected, the breach is unlikely to prompt direct regulatory consequences but may accelerate calls for standardized operational security frameworks. India's crypto sector continues to operate in a grey regulatory zone, subject to tax laws but without unified cybersecurity standards. With adoption on the rise, incidents like this could push industry bodies and exchanges to double down on backend controls and investor assurance.
International Business Times
22-07-2025
- International Business Times
Breaking Barriers: Making DeFi Truly Accessible With Unichain
For years, the decentralized finance (DeFi) ecosystem has promised open access to financial tools without intermediaries. But for everyday users, that promise often collided with a reality of prohibitively high gas fees, opaque transaction systems, and technical barriers. In 2024, average Ethereum transaction costs spiked during periods of network congestion, with some users paying more than $100 per transaction. For smaller developers and retail participants, this created a system where Cryptocurrency felt anything but accessible. One builder has worked to change that equation As Head of Growth for Uniswap Foundation, Chirag Narang led the development and launch of a new Layer 2 blockchain architecture called Unichain, designed from the ground up for DeFi. The mission was clear: eliminate the bottlenecks that inflated user costs, starting with the structural causes behind gas inefficiency. Chirag Narang didn't approach the problem as a feature tweak or short-term optimization. He viewed high gas fees as a systemic failure, one that necessitated a fundamental re-evaluation of how transactions are ordered, validated, and executed. Rather than build around the inefficiencies, Chirag Narang led the creation of an entirely new infrastructure layer with fairness and cost-efficiency as core design principles. This wasn't just about cutting fees, it was about making DeFi truly accessible. Why High Transactional Fee Was More Than a Technical Glitch Ethereum's core infrastructure was never optimized for the high-frequency, multi-party transaction logic required by most DeFi protocols. With every smart contract interaction competing for blockspace, high gas costs became the norm rather than the exception. These costs didn't just impact power users trading large volumes. They excluded many participants entirely, particularly smaller U.S. investors and developers experimenting with their first smart contracts. Moreover, high gas prices weren't just a matter of congestion. As Chirag Narang observed, centralized sequencer models across many Layer 2s often prioritized throughput over fairness. This meant users who couldn't pay higher gas premiums were routinely pushed to the back of the queue or fell victim to front-running by faster, well-resourced users. Building an Infrastructure That Cuts Cost at the Root Unichain was built to solve this problem at the system level. Rather than layering onto an existing architecture, Chirag Narang led the effort to architect a purpose-built network that integrated two critical components: decentralized sequencing and programmable liquidity. At the core of Unichain's architecture is its Validation Network (UVN), a decentralized group of validators that eliminates reliance on a single sequencer. This structure alone limits the gas manipulation opportunities that single-operator rollups often introduce. The use of Trusted Execution Environments (TEEs) in Unichain enables fair ordering of transactions. Unichain ensures a fairer playing field for users by imposing gas-based priority instead of backroom preferences. Failed trades are refunded. High-speed trading doesn't drown out slower participants. And most critically, users aren't forced to overpay just to ensure inclusion. Gas Efficiency Through Programmable Liquidity The other half of the cost equation lies in liquidity design. Traditional DeFi systems require repeated contract calls and static fee structures, each adding cost to a transaction. Under Chirag Narang's leadership, Unichain launched programmable liquidity hooks that allow developers to consolidate logic such as rebalancing, fee adjustments, or collateral management into a single on-chain module. That consolidation reduces the number of steps in a transaction, and therefore, reduces gas fees. In practice, users engaging with Unichain-enabled apps pay less because they're no longer routed through bloated, hard-coded smart contracts. From System Design to Measurable Impact The proof is in adoption. Within six months of launch, Unichain secured around $900 million in total value and became one of the fastest-growing Layer 2 networks. U.S.-based developers, including those without large operational budgets, were able to deploy applications with greater capital efficiency. Unichain enabled retail users to return to the ecosystem without worrying about the high gas fees and threats. Apart from retail users, Unichain was adopted by several other significant organizations, including finance firms like Enso Finance, researchers from universities in the UK and Germany, and various other blockchain founders. More than a protocol upgrade, Chirag Narang's contribution redefined what DeFi affordability could look like, not through subsidies or temporary incentives, but through architecture-level changes that persist across market cycles. Lower Fees, Higher Trust Gas costs in DeFi aren't just a line item. They're a trust signal. When users feel they're being priced out or manipulated at the infrastructure level, adoption stalls. By reducing those costs systemically, Unichain under Chirag Narang's leadership rebuilt a foundation where DeFi can be what it always claimed to be: open, fair, and efficient for all. In conclusion, Chirag Narang didn't just launch a Layer 2 blockchain; he helped restore access to an entire class of users priced out of the digital financial future and showed that cost-efficiency, when built into the architecture, can scale equity along with innovation.
International Business Times
21-07-2025
- International Business Times
$44.2 Million Drained from CoinDCX Crypto Exchange in the Biggest Crypto Heist of 2025
July 21, 2025 17:05 +08 CoinDCX, one of the largest cryptocurrency exchanges in India, disclosed a significant security breach. Hackers stole approximately $44.2 million when they obtained access to one of the company's internal accounts. This account was available to facilitate trading in an orderly manner by providing liquidity. X Well-known hacker ZachXBT first noticed this problem. He discovered the breach 17 hours after it occurred. CoinDCX quickly quarantined the impacted account and prevented further loss. The exchange confirmed that the wallets containing users' funds were not impacted. Existing users can still withdraw funds and deposit funds to trade. As a precaution, the platform temporarily had disabled its Web3 mode, meaning users can access over 50,000 decentralized finance (DeFi) tokens. The feature was later restored. The company will cover the entire loss using its own funds, CoinDCX CEO Sumit Gupta said. "No customer funds were lost. Our treasury is capable enough to bear this," Gupta wrote in a social media post. And their in-house team, working with outside cybersecurity experts, is trying to figure out how the hack occurred and where the stolen funds have ended up, he added. This is one of the biggest crypto hacks of 2025. Hackers have taken more than $2 billion in cryptocurrencies so far this year, according to a report from Chainalysis. The increasingly large sample is generating some serious concerns about the security of the cryptocurrency exchanges. To further enhance security on the platform, CoinDCX intends to roll out a bug bounty program. The program will pay by-the-book hackers who report weaknesses before they're used to loot the system. The platform is also working together with partner platforms to monitor and recover the stolen funds. However, despite the setback, CoinDCX has announced that user funds are safe and operations are normal. The company says it's still committed to transparency and bolstering its systems against future threats.
