WazirX pauses trading after $230m cyber-attack loss

Indian crypto exchange WazirX has temporarily paused all trading after it lost $230 million in funds on Thursday during a security breach.

The Mumbai-based exchange said the crypto was stolen from one of its multi-signature wallets, which need two or more private keys to validate and authorise transactions.

WazirX’s impacted wallet was protected by six signatories, five of whom were with the WazirX team.

The firm, which reported assets under management of about $500 million in its June proof-of-reserves disclosure, called the security breach “a force majeure event.”

“The cyber-attack stemmed from a discrepancy between the data displayed on Liminal’s interface and the transaction’s actual contents,” the firm added.

According to the exchange, the cyber-attack impaired its ability to maintain the critical 1:1 collateral ratio with assets, with the firm suspending customer withdrawals earlier this week.

Indian exchanges CoinSwitch and CoinDCX, both of which work with WazirX for some of their services, said earlier this week that their customers hadn’t been impacted by the attack on WazirX.

WazirX announced a bounty programme of up to $23 million to reward anyone who could help the firm recover the stolen assets.

Risk-management platform Elliptic claimed last week its analysis had found that the attacker had links to North Korea.



Share Story:

Recent Stories


Sanctions evasion in an era of conflict: Optimising KYC and monitoring to tackle crime
The ongoing war in Ukraine and resulting sanctions on Russia, and the continuing geopolitical tensions have resulted in an unprecedented increase in parties added to sanctions lists.

Achieving operational resilience in the financial sector: Navigating DORA with confidence
Operational resilience has become crucial for financial institutions navigating today's digital landscape riddled with cyber risks and challenges. The EU's Digital Operational Resilience Act (DORA) provides a harmonised framework to address these complexities, but there are key factors that financial institutions must ensure they consider.

Legacy isn’t the enemy: what FSIs can do to keep their systems up and running
In this webinar we will examine some of the steps FSIs have already taken to rigorously monitor and test systems – both manually and with AI-powered automation – while satisfying the concerns of regulators and customers.

Optimising digital banking: Unifying communications for seamless CX
In the digital age, financial institutions risk falling behind their rivals if they fail to unite fragmented communications ecosystems to deliver seamless, personalised customer experiences.

This FStech webinar sponsored by Precisely explores vital strategies to optimise cross-channel messaging through omnichannel orchestration and real-time customer data access.