CoinDCX Insider Breach: $44M Crypto Heist Exposes Login Flaws—Security Wake-Up Call

Crypto exchange CoinDCX reels after hackers siphon $44M in digital assets—exploiting weak employee credentials in a brazen inside job.

How it happened: Attackers bypassed basic security protocols using compromised staff logins, turning trusted access into a $44M withdrawal slip.

The fallout: While exchanges promise 'bank-grade security,' this heist proves even regulated platforms play fast-and-loose with custody—until the auditors come knocking.

As reported earlier, cybersecurity experts from Cyvers found that the exploit is linked to the infamous North Korean Lazarus Group. They said that the hack pattern mirrors another Indian crypto exchange WazirX’s $234 million crypto hack last year.

CoinDCX Employee Received Call From Germany, Worked Part-Time

According to Hardeep Singh, Neblio vice-president for public policy, Agarwal was a permanent employee of the company. Further, he was found using the company laptop for freelance jobs.

“He came under the scanner after the company found out that an unknown person had hacked into the system at 2.37 am on July 19 and transferred 1 USDT to a wallet,” a police statement said, quoting Hardeep Singh. “Around 9.40 am, the hacker siphoned off $44 million and transferred it to six wallets.”

The company’s internal investigations later revealed that Agarwal’s laptop was compromised, allowing the hacker to access CoinDCX’s server.

Further, during police interrogation, the employee admitted to moonlighting, taking up private jobs using the company laptop. Agarwal also noted that he received a WhatsApp call from Germany stating that a few files had been sent to him for completion.

“He said one of the files could have been a bait and the hacker could have entered into his official system,” police said in a statement. “He maintained he was not aware of the theft till his company summoned him.”

A case has been registered under various sections of the Indian Information Technology Act.

Hackers Transferred $17K to Techie

Additionally, per investigations, the techie had received around $17,131 into his bank account from an unknown source, raising questions.

The police First Information Report (FIR) stated that Agarwal claimed to have received the amount through his part-time job over the past year.

The news arrives a day after rumors erupted over US crypto exchange giant Coinbase acquiring CoinDCX. A local report revealed that the deal WOULD appraise CoinDCX at below $900 million.

Later, CoinDCX CEO Sumit Gupta called the Coinbase acquisition “rumours,” adding that CoinDCX is “super focused” on building for India’s crypto story and not up for sale.