Breach, Incident Response

Nearly 1.6K crypto wallets compromised in CoinStats breach

Share
Cryptocurrency with blurred city abstract lights background

Cryptocurrency portfolio management platform CoinStats had 1,590 cryptocurrency wallets, or 1.3% of all its hosted wallets, impacted by a widespread security breach believed by the firm to have been conducted by North Korean hacking collective Lazarus Group, according to BleepingComputer.

Such an incident, which has resulted in the temporary takedown of the CoinStats app, has not affected connected wallets and centralized exchanges, said the firm, which recommended immediate fund transfers to external wallets for individuals whose wallets were compromised amid ongoing investigation and attack mitigation efforts. Meanwhile, threat actors have already begun launching fraudulent CoinStat refund programs using typosquatted accounts on X, formerly Twitter. Individuals who may have been affected by the CoinStats breach are being lured to click a link in the post, which redirects to a cloned site requesting a connection to their wallets that would eventually result in the exfiltration of all its assets.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.