UK cryptocurrency exchange EXMO suffers breach, funds stolen

Graham Cluley
@gcluley

EXMO says that it is the latest in a longer line of cryptocurrency exchanges to have suffered at the hands of hackers, having spotted suspicious activity in the early hours of yesterday morning, where client’s accounts were accessed and large amounts withdrawn.

In an announcement posted on its website, the British cryptocurrency exchange did not say how much digital currency had been stolen, but said that hot wallets contain Bitcoin, Ripple, Zcash, Tether, Ethereum Class, and Ethereum had been impacted.

“The affected hot wallets comprise near 5% of the total assets. Let us stress that all the assets in the cold wallets are safe.”

EXMO shared details of the wallet addresses into which it says the hacker had transferred the stolen funds:

  • BTC — 1A4PXZE5j8v7UuapYckq6fSegmY5i8uUyq
  • USDT (ERC20) — 0x4BA6B2fF35055aF5406923406442cD3aB29F50Ce
  • ETH — 0x4BA6B2fF35055aF5406923406442cD3aB29F50Ce
  • BCH — qrfrw5q9gag2vp6jc5nlx0haplm2jlhx9vsvxd9u3e
  • ZEC — t1StUQiw1YyHT515xDxwxjfhEcw2iGSq2yL
  • XRP — rwU8rAiE2eyEPz3sikfbHuqCuiAtdXqa2v (tag 2033412069)
  • ETC — 0x4d9EF6846126Da2867AF503448be0508542C971e

EXMO is asking other services and exchanges to block access to the accounts that can access the above wallets, and has reached out to British police.

Sign up to our newsletter
Security news, advice, and tips.

My advice? If you have a not-insignificant amount of cryptocurrency you would be wise to keep it offline in a cold wallet than risk leaving it online in a hot wallet which might one day be breached by hackers.

Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.


Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.