Grinex Crypto Exchange Announced Cyberattack Resulting in $13 Million Theft
Published
Key Takeaways
- Operations suspended: The Grinex exchange halted all platform services after unauthorized actors reportedly extracted 1 billion roubles from its digital reserves.
- State involvement alleged: Grinex accused foreign intelligence services of orchestrating the breach, citing digital footprints that point to highly sophisticated, state-level technological resources.
- Sanctions evasion infrastructure: The platform previously enabled users to bypass international SWIFT banking restrictions using A7A5, a specific Russian rouble-backed stablecoin.
An alleged Grinex crypto exchange cyberattack has forced the Kyrgyzstan-based platform to suspend all operations. On Thursday, the platform announced the theft of assets totaling 1 billion roubles (roughly $13.10 million), reportedly due to foreign intelligence services.
Allegations of State-Sponsored Interference
Grinex, which was designated as Garantex’s successor, attributed the sophisticated security breach to foreign intelligence services representing "unfriendly states" in a detailed statement released via its official Telegram channel, cited by Reuters.
Representatives for the exchange reported that the digital forensics and overall execution of the network intrusion indicated an unprecedented level of resource deployment. "The digital footprints and nature of the attack indicate an unprecedented level of resources and technologies available exclusively to entities of unfriendly states," the announcement read.
According to the platform's preliminary operational data, the coordinated attack was allegedly designed explicitly to inflict direct operational harm on Russia's financial sovereignty.
Regulatory Scrutiny and Sanctions Evasion
The targeted platform operates as a prominent Russia-linked cryptocurrency exchange. Last year, Grinex faced severe sanctions from the U.S., the U.K., and the European Union.
United States regulatory authorities previously established that the exchange actively assisted clients in circumventing international economic sanctions, utilizing a proprietary Russian rouble-backed stablecoin designated as A7A5.
Following its removal from the international SWIFT banking system amid the military campaign in Ukraine, Russia accelerated the development of alternative crypto infrastructure to maintain foreign trade capabilities.
The successful targeting of sanctioned crypto platforms like Grinex demonstrates the persistent technical vulnerabilities inherent in these newly established, localized financial ecosystems. In March, Cambodian fraud compound operators ‘Legend Innovation’ and crypto marketplace Xinbi were sanctioned by the U.K.
Earlier this month, a Drift Hack exposed a $28.5 million DPRK social-engineering campaign that had been underway for six months.
Related
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular