Table of Contents
Grinex Exchange Hit by Cyberattack, US$15 Million in USDT Reportedly Stolen
Grinex, a crypto exchange registered in Kyrgyzstan and associated with the Russian digital asset market, announced the suspension of withdrawals and trading following a significant cyberattack targeting its wallet infrastructure. The exchange reported a theft of over 1 billion rubles, approximately US$13.1 million (AU$18.3 million), as communicated in a notice on its official website.
In assessing the breach, blockchain analytics firm Elliptic revealed that approximately US$15 million in Tether (USDT) was drained from wallets associated with Grinex. The stolen funds were subsequently funneled through both Tron and Ethereum networks before being converted into TRX and ETH. This conversion tactic likely aimed to avoid asset freezing since Tether has the capacity to blacklist USDT linked to illegal activities.
A wallet identified by Grinex revealed it still housed around 45.9 million TRX, equating to over US$15 million (AU$21 million). This suggests that a considerable portion of the pilfered assets may have been consolidated into a single address following the initial transfers. However, it raises questions as to why Grinex’s assessment of the losses was less than Elliptic’s estimate.
Allegations of Hostile State Involvement
Grinex described the cyberattack as a coordinated effort aimed at undermining Russia’s financial sovereignty, insinuating that hostile foreign state actors were responsible. However, the exchange did not furnish any supporting evidence for this assertion.
The Legacy of Garantex
The incident has reignited concerns regarding Grinex’s involvement in cryptocurrency transactions tied to Russia. The exchange is commonly perceived as a successor to Garantex, which US authorities shut down last year for facilitating significant flows related to ransomware and darknet activities. Elliptic has posited that both exchanges may share common ownership and management.
Following Garantex’s closure, users and liquidity have shifted to platforms like Grinex, which has emerged as a significant hub for ruble-to-crypto trading alongside the ruble-backed stablecoin A7A5. Elliptic estimates transactions processed by A7A5 have exceeded US$100 billion (AU$140 billion).
US authorities have already taken action against this network, with the US Secret Service and Elliptic previously freezing US$26 million (AU$36.4 million) in stablecoins associated with Garantex.
Conclusion
As the crypto landscape continues to grapple with security issues and regulatory scrutiny, the fallout from this attack on Grinex underscores the ongoing challenges faced by cryptocurrency exchanges, particularly those connected to high-risk markets. The inquiry into the attack’s origins and implications will likely continue, spotlighting the need for enhanced security measures within the rapidly evolving crypto sector.
