Skip to content

WazirX denies laptop compromise in $230 million crypto heist

  • by
  • 2 min read

WazirX has categorically denied that its laptops were compromised in a recent cyberattack that resulted in over $230 million being stolen from one of its multi-sig wallets. The company also announced that it will cancel all open orders and restore INR and crypto assets blocked in these orders.

After the cyberattack, WazirX engaged Mandiant, a subsidiary of Google, to conduct a thorough forensic analysis of the breach.

According to the preliminary findings from Mandiant, shared by WazirX, the three laptops used to sign transactions for the affected wallet showed no signs of compromise.

While this initial assessment appears to clear WazirX’s internal systems, the final report is still awaited, leaving many questions unanswered about the true origin of the breach.

“Mandiant, a leading cybersecurity firm, and Google subsidiary has confirmed that the laptops used by WazirX team members during the recent $230 million cyberattack were not compromised,” WazirX tweeted.

This security breach targeted a collaborative digital wallet system that required several private keys for transaction approval. Six authorised parties oversaw the affected wallet: five from the exchange and one from Liminal.

On August 21, WazirX announced that it would cancel all open transactions and restore INR and crypto assets.

“Please note that all open orders currently placed on WazirX will be cancelled. Any INR and crypto assets blocked in these open orders will be added to your respective balances,” WazirX tweeted.

Now, the blame game has started between WazirX and Liminal. In response to WazirX’s allegations, Liminal Custody expressed concern, stating, “We cannot comment on the statement put out by WazirX due to the lack of information on the scope and methodology of the audit they conducted. However, if one were to go by the information they’ve shared, it raises serious questions about the security of their network infrastructure, operational custody controls, and overall security posture, given that they were the custodians for 5 out of the 6 keys.”

Liminal also said they had done a preliminary audit and found no breach on the front-end or back-end UI.

In the News: LiteSpeed Cache plugin flaw potentially puts 5 million websites at risk

Kumar Hemant

Kumar Hemant

Deputy Editor at Candid.Technology. Hemant writes at the intersection of tech and culture and has a keen interest in science, social issues and international relations. You can contact him here: kumarhemant@pm.me

>