Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Recently, Estonian encrypted payment service provider CoinsPaid said it suffered a cyber attack and $37.3 million worth of cryptocurrency was stolen. Although the attack caused significant financial losses to the company and had many adverse effects on the usability of the payment platform, the company stated that customer funds are still safe and the incident will not have a significant impact on the company's business. CoinsPaid said the attack was initiated by the Lazarus hacking group, and their goal was to obtain higher cash. On July 26, SlowMist tweeted that CoinsPaid, Atomic and Alphapo attackers may all be the North Korean hacker organization Lazarus Group. Attack method (per SlowMist): Unknown. Reported loss: $ 37,300,000.
- chain
- —
- protocol
- CoinsPaid
- bug_class
- unknown
- date_occurred
- 2023-07-22
- loss_usd
- $37,300,000
- source_id
- sm:coinspaid::2023-07-22