{"id":39852,"date":"2025-07-31T20:46:51","date_gmt":"2025-07-31T20:46:51","guid":{"rendered":"https:\/\/dogewisperer.com\/?p=39852"},"modified":"2025-07-31T20:46:51","modified_gmt":"2025-07-31T20:46:51","slug":"coindcx-software-engineer-arrested-in-connection-to-44-million-hack-report","status":"publish","type":"post","link":"https:\/\/dogewisperer.com\/?p=39852","title":{"rendered":"CoinDCX Software Engineer Arrested in Connection to $44 Million Hack (Report)"},"content":{"rendered":"
\n

The Indian exchange is the latest victim of bad actors exploiting vulnerabilities and taking control of internal systems, resulting in millions of dollars being lost.<\/p>\n

The losses this year, overall, are already in the billions, and, regrettably, continue to increase at an alarming pace.<\/p>\n

Details on What Happened<\/h2>\n

A local Indian news outlet, The Times\u00a0of India,\u00a0shared<\/a> the story about Rahul Agarwal, a staff member of the CoinDCX exchange, whose login information was compromised. He has been taken into custody by Bengaluru authorities, reportedly linked<\/span>\u00a0to a \u20b9379-crore ($44 million) exploit of funds.<\/p>\n

The alarm was raised following a complaint by Nebilo Technologies, the company that runs the exchange. Their Vice President for public policy, Hardeep Singh, stated the following:<\/p>\n

\n

\u201cRahul had a permanent role within the company, and he was provided with a laptop strictly for work. Our investigation began after we discovered that an unknown person had gained unauthorized access to our systems on July 19th, around 2:30 am, by transferring 1 USDT to an external wallet. Several hours later, around 9:30 a.m., the $44 million was siphoned off and distributed among six wallets.<\/p>\n<\/blockquote>\n

During his questioning by the police, Agarwal maintained his innocent stance, claiming he knew nothing about the hack. However, he did admit to \u201cmoonlighting\u201d (working a second job outside regular business hours) with three to four private parties, without thoroughly vetting them.\u00a0<\/span><\/p>\n

It\u2019s further noted that the accused received \u20b915 lakh (~$17,000) in his personal bank account from an unknown source. The Bengaluru police also point out that Agarwal claimed to have received a phone call from a German phone number, stating he \u201chad a few files to complete.\u201d\u00a0<\/span><\/p>\n

He believes one of those files was fitted with malware, which granted the attackers access to CoinDCX\u2019s internal systems, and he remained adamant that he was unaware of what was happening until the company summoned him.<\/p>\n

The exchange\u2019s founder and CEO, Sumit Gupta, shared<\/a> the bitter news of the attack on X, calling it a \u201csophisticated social engineering attack,\u201d but without being able to disclose any further information on what had transpired.<\/p>\n

\n

Some media reports have surfaced referencing the FIR we filed with the Karnataka Police regarding the security incident that impacted our platform.<\/p>\n

As this is an ongoing investigation, we unfortunately cannot engage with the media or public on this issue. We want to ensure the\u2026<\/p>\n

\u2014 Sumit Gupta (CoinDCX) (@smtgpt) July 31, 2025<\/a><\/p>\n<\/blockquote>\n