UK cryptocurrency exchange EXMO suffers breach, funds stolen

Graham Cluley
Graham Cluley
@[email protected]

UK cryptocurrency exchange EXMO suffers breach, funds stolen

EXMO says that it is the latest in a longer line of cryptocurrency exchanges to have suffered at the hands of hackers, having spotted suspicious activity in the early hours of yesterday morning, where client’s accounts were accessed and large amounts withdrawn.

In an announcement posted on its website, the British cryptocurrency exchange did not say how much digital currency had been stolen, but said that hot wallets contain Bitcoin, Ripple, Zcash, Tether, Ethereum Class, and Ethereum had been impacted.

Exmo statement

“The affected hot wallets comprise near 5% of the total assets. Let us stress that all the assets in the cold wallets are safe.”

EXMO shared details of the wallet addresses into which it says the hacker had transferred the stolen funds:

  • BTC — 1A4PXZE5j8v7UuapYckq6fSegmY5i8uUyq
  • USDT (ERC20) — 0x4BA6B2fF35055aF5406923406442cD3aB29F50Ce
  • ETH — 0x4BA6B2fF35055aF5406923406442cD3aB29F50Ce
  • BCH — qrfrw5q9gag2vp6jc5nlx0haplm2jlhx9vsvxd9u3e
  • ZEC — t1StUQiw1YyHT515xDxwxjfhEcw2iGSq2yL
  • XRP — rwU8rAiE2eyEPz3sikfbHuqCuiAtdXqa2v (tag 2033412069)
  • ETC — 0x4d9EF6846126Da2867AF503448be0508542C971e

EXMO is asking other services and exchanges to block access to the accounts that can access the above wallets, and has reached out to British police.

Sign up to our free newsletter.
Security news, advice, and tips.

My advice? If you have a not-insignificant amount of cryptocurrency you would be wise to keep it offline in a cold wallet than risk leaving it online in a hot wallet which might one day be breached by hackers.

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.