Indian cryptocurrency exchange WazirX suffered a security breach on Thursday, resulting in the temporary suspension of all withdrawals. The breach involved the transfer of approximately $230 million from one of WazirX’s multisig wallets to an unknown address. Web3 security firm Cyvers reported the suspicious activity, leading WazirX to confirm the breach and pause withdrawals to protect user assets. In response, Sumit Gupta, CEO of CoinDCX, assured users that their assets were secure and unaffected.
Indian cryptocurrency exchange WazirX experienced a significant security breach on Thursday, leading to the temporary suspension of all withdrawals. The breach involved one of the company’s wallets, which transferred approximately $230 million to an unknown address.
Details of the Breach
Cyvers, a Web3 security firm, raised the alarm on the social media platform X (formerly Twitter), highlighting that a suspicious address had been involved in swapping virtual digital assets and transferring other assets. In response, WazirX confirmed the breach, stating that one of their multisig wallets had been compromised. The company announced that withdrawals of both INR and cryptocurrencies would be temporarily halted to protect user assets.
“We are aware that one of our multisig wallets has experienced a security breach. Our team is actively investigating the incident. To ensure the safety of your assets, INR and crypto withdrawals will be temporarily paused,” WazirX said in a statement.
Industry Reactions
The incident has prompted reactions from various stakeholders within the cryptocurrency industry. Sumit Gupta, co-founder and CEO of CoinDCX, reassured users that their assets were secure, emphasizing the robustness of their wallet security systems. “In light of the recent #WazirX breach, we want to reassure all @CoinDCX users that your assets are safe and not impacted in any manner. Our wallet security remains robust,” Gupta tweeted.
Regulatory Context
The breach at WazirX occurs in a broader context of increasing regulatory scrutiny on cryptocurrency exchanges. The Indian finance ministry has issued show-cause notices to nine offshore virtual digital assets (VDA) service providers, including major platforms like Binance and Kucoin, for non-compliance with anti-money laundering laws. These actions were part of efforts by the Financial Intelligence Unit (FIU) to enforce compliance and ensure the integrity of financial transactions involving cryptocurrencies.
In December of the previous year, the FIU requested the Ministry of Electronics and Information Technology to block the websites of non-compliant VDA platforms. Home-grown crypto firms have been striving to create channels that would allow investors to transfer their assets from offshore exchanges to domestic platforms, aiming to enhance security and regulatory compliance.
Broader Implications
The WazirX security breach underscores the vulnerabilities and risks associated with the rapidly evolving cryptocurrency sector. As the industry grows, so does the sophistication of cyber threats. This incident highlights the need for robust security measures and proactive regulatory frameworks to protect investors and maintain trust in the digital asset ecosystem.
Read more : Daily Indian Startup news & Funding Roundup