- • CoinDCX suffered a cyberattack on July 19, 2025, resulting in a loss of approximately $44.2 million from an internal operational account, not affecting user wallets.
- • The breach targeted a liquidity provisioning account, ensuring that customer funds remained isolated and secure during the incident.
- • This attack follows a significant breach of WazirX, which lost $235 million a year prior, highlighting ongoing vulnerabilities in India's cryptocurrency infrastructure.
- • CoinDCX co-founders confirmed the breach and are actively investigating the incident, assuring users that trading operations remain uninterrupted.
- • Immediate actions for security teams include reviewing internal account access controls and enhancing monitoring for unauthorized access attempts.
On July 19, 2025, CoinDCX, India's second-largest cryptocurrency exchange, experienced a cyberattack that led to a loss of $44.2 million from an internal operational account. The breach did not compromise customer wallets, as the targeted account was specifically for liquidity provisioning. This incident underscores the vulnerabilities in India's crypto sector, following last year's WazirX hack. Security teams should immediately review and tighten access controls for internal accounts, enhance monitoring for unauthorized access, and ensure robust incident response protocols are in place to mitigate future risks.