WazirX Users Allege $230M Crypto Heist Was an Inside Job

Inside job theories heat up as WazirX users expose troubling anomalies with Julyโ€™s $230M hack.

Hipster guy with a beard sitting on a floating rock between heaven and hell with some Bitcoins floating around.
Created by Gabor Kovacs from DailyCoin
  • WazirX fell victim to a digital heist in July. 
  • The exchangeโ€™s financial future hangs in the balance.
  • Some WazirX users question if the hack was an inside job.

Hacks are a persistent challenge for the crypto industry as cybercriminals continually evolve their tactics to execute digital heists. In July, WazirX was hit by a major breach, resulting in the loss of $230 million in ETH tokens.

Since then, the company has faced criticism on numerous fronts, including its slow response to reopening withdrawals and its public dispute with custody provider Liminal. Now, nearly two months later, some WazirX users suggest the hack could have been an inside job.

Suspicions Raised

The fallout from the WazirX hack has taken a new twist, with the X account “Justice for WazirX Users” (JfWU) raising suspicions of foul play. Although JfWU hasn’t provided concrete evidence, the account highlights unusual events that call for closer scrutiny of key personnel at the exchange.

Sponsored

JfWU outlined several discrepancies in the lead-up to the hack, including a breakdown of multiple security fail-safes. These irregularities, they argue, suggest that the hack may have involved internal collusion, further complicating the companyโ€™s recovery efforts.

Hacker Steals WazirX Credentials

According to JfWU, the hacker opened a WazirX account using fake KYC information and deposited crypto, later trading it for GALA tokens. On July 18, the day of the hack, they began withdrawing GALA tokens, depleting WazirX’s hot wallet. 

This forced the exchange to move additional GALA tokens from its cold storage, managed by custodians Liminal, to replenish the hot wallet so that other users could withdraw GALA.

As WazirX attempted the transfer, the hacker reportedly injected malicious code, causing the sweep of GALA tokens from cold to hot storage to fail. The issue was escalated to other cold storage signatories, who made several attempts to move funds.

The process of three different signatories trying to move funds enabled the hacker to steal their credentials and obtain the necessary number of signatures (plus the fourth from Liminal) to begin the breach.

Crystal Intelligence confirmed that forensic analysis showed that the laptops of key personnel, used for signing transactions, were not compromised. An independent audit of Liminalโ€™s system by Grant Thornton revealed no evidence of a custodial breach.

The hacker managed to deceive WazirX and Liminal into approving a malicious smart contract to obtain control of the cold storage wallet, which was the critical final step in causing the loss of users’ funds.

Insider Job?

Tying the events together, JfWU expressed concern over WazirX storing nearly half of the users’ funds in a single cold storage location, questioning why such a significant portion of assets was concentrated in one place.

JfWU also pointed out that the hacker seemed to have targeted GALA tokens to trigger the events leading to the cold storage sweep. They suggested that changing the cold wallet smart contract would be challenging without insider help, intensifying suspicions of foul play.

In light of these unanswered questions, JfWU has urged affected users to file criminal complaints, aiming to pressure the Central Bureau of Investigation to open a formal inquiry into the WazirX hack.

On the Flipside

Why This Matters

The WazirX hack serves as a reminder of the risks crypto users face when dealing with centralized entities.

WazirX hack raises fears of a domino effect in the crypto industry.
WazirXโ€™s Restructuring Sparks Fresh Crypto Contagion Fears

Suriname presidential hopeful wants a Bitcoin standard.
Bitcoin Takes Center Stage in Suriname’s Presidential Race

This article is for information purposes only and should not be considered trading or investment advice. Nothing herein shall be construed as financial, legal, or tax advice. Trading forex, cryptocurrencies, and CFDs pose a considerable risk of loss.

Author
Samuel Wan

Samuel Wan is a reporter at DailyCoin covering market affairs. Samuel's has holdings in Bitcoin and Cardano, with other minor holdings across the market.

Read more