{"id":5228,"date":"2025-07-21T05:41:58","date_gmt":"2025-07-21T05:41:58","guid":{"rendered":"https:\/\/bitunikey.com\/news\/coindcx-goes-live-again-inr-withdrawals-reopen-after-44m-breach\/"},"modified":"2025-07-21T05:42:02","modified_gmt":"2025-07-21T05:42:02","slug":"coindcx-goes-live-again-inr-withdrawals-reopen-after-44m-breach","status":"publish","type":"post","link":"https:\/\/bitunikey.com\/news\/coindcx-goes-live-again-inr-withdrawals-reopen-after-44m-breach\/","title":{"rendered":"CoinDCX goes live again\u2014INR withdrawals reopen after $44m breach"},"content":{"rendered":"

<\/p>\n

\n

India\u2019s largest crypto exchange is back online after a $44 million breach exposed a blind spot in its operational infrastructure. <\/p>\n

While no customer funds were touched, the CoinDCX hack\u2014traced to a Tornado Cash-funded wallet\u2014raises fresh questions about transparency and wallet hygiene in a market still building user trust. Now fully operational, CoinDCX is vowing stronger safeguards and a bug bounty program to stay ahead of the next exploit.<\/p>\n

ZachXBT IDs attack<\/strong><\/h3>\n

On-chain investigator ZachXBT first identified<\/a> the attack approximately 17 hours prior to the exchange publicly disclosing the incident.<\/p>\n

ZachXBT traced the attack to an address funded with 1 ETH from Tornado Cash, with the attacker later bridging stolen funds from Solana (SOL) to Ethereum (ETH).<\/p>\n

Tel Aviv-based security firm Cyvers flagged the suspicious withdrawals, prompting manual attribution, as the affected CoinDCX hot wallet lacked public tags and proof-of-reserves documentation.<\/p>\n

\n
\n
\n

Hi everyone,<\/p>\n

At @CoinDCX<\/a>, we have always believed in being transparent with our community, hence I am sharing this with you directly.<\/p>\n

Today, one of our internal operational accounts \u2013 used only for liquidity provisioning on a partner exchange \u2013 was compromised due to a\u2026 pic.twitter.com\/L1kZhjKAxQ<\/a><\/p>\n

\u2014 Sumit Gupta (CoinDCX) (@smtgpt) July 19, 2025<\/a><\/p><\/blockquote>\n<\/div>\n<\/figure>\n

Customer funds remain secure<\/strong><\/h3>\n

CoinDCX CEO Sumit Gupta addressed the community directly and mentioned that the breach did not impact customer assets.<\/p>\n

\u201cNo customer funds have been impacted. Your assets remain completely safe and protected in our secure cold wallet infrastructure,\u201d Gupta stated in his initial disclosure.<\/p>\n

<\/p>\n

The hack affected an internal operational account used solely to provision liquidity on a partner exchange, not consumer deposit wallets.<\/p>\n

\u201cThe incident was quickly contained by isolating the affected operational account. Since our operational accounts are segregated from customer wallets, the exposure is only limited to this specific account,\u201d Gupta explained.<\/p>\n

CoinDCX exchange restores full functionality<\/strong><\/h3>\n

Following the security incident, CoinDCX temporarily suspended certain operations while investigating the breach. The exchange has since restored all trading activities and INR withdrawal capabilities without restrictions.<\/p>\n

\n
\n
\n

Trading and INR withdrawals on CoinDCX are fully operational and running smoothly. \u2705<\/p>\n

You can withdraw your INR anytime \u2014 without restrictions. We\u2019re here for you, and we stand by our commitment to honour all withdrawal requests. \ud83d\udcaf<\/p>\n

A gentle reminder: Don\u2019t panic sell your\u2026 https:\/\/t.co\/e4DWVvYx0i<\/a><\/p>\n

— Sumit Gupta (CoinDCX) (@smtgpt) July 19, 2025<\/a><\/p><\/blockquote>\n