The article describes a significant financial breach against a cryptocurrency exchange but does not specify the technical vulnerability, attack vector, or method used by the threat actors. No CVSS score, affected software versions, fixed versions, or workarounds are provided in the source material. The incident is attributed to a highly resourced actor, with the exchange alleging the attack was state-sponsored and aimed at Russian users.
Grinex, a US-sanctioned cryptocurrency exchange registered in Kyrgyzstan, said it’s halting operations after experiencing a $13 million heist carried out by “western special services” hackers. Researchers from TRM, which has confirmed the theft, put the value of stolen assets at $15 million after discovering roughly 70 drained addresses, about 16 more than Grinex reported. Neither TRM nor fellow blockchain research firm Elliptic has said how the attackers slipped past Grinex’s defenses. Grinex said it has been under almost constant attack attempts since incorporating 16 months ago. The latest attacks, it said, targeted Russian users of the exchange. Damaging "Russia's financial sovereignty" “The digital footprints and nature of the attack indicate an unprecedented level of resources and technology available exclusively to the structures of unfriendly states,” Grinex said . “According to preliminary data, the attack was coordinated with the aim of causing direct damage to Russia's financial sovereignty.” Read full article Comments