CoinDCX Offers Massive Bounty Program After $44M Hack

The post CoinDCX Offers Massive Bounty Program After $44M Hack appeared first on Coinpedia Fintech News

CoinDCX, one of India’s largest exchanges, suffered a $44.2 million hack on July 19, 2025, after attackers targeted an internal trading wallet. The hackers stole $28.3 million in SOL and $15.78 million in ETH, using Tornado Cash to cover their tracks. CoinDCX quickly secured the wallet and promised to cover losses from their treasury.

Sumit Gupta, the CEO of CoinDCX, shared that it has received over 31,000 INR withdrawal requests in the past 24 hours. 98% of these have already been processed, and the remaining 600 are expected to be completed within 72 hours of the request. He assured users that customer funds are 100% safe, as all user assets are stored in segregated cold wallets.

25% Reward for Tracing Stolen Crypto

In a latest update, the CEO has announced a Recovery Bounty Program. Up to 25% of any recovered funds will be awarded to those who help trace and retrieve the stolen crypto, with a potential reward pool of up to $11 million if the full amount is retrieved.

The goal is to get useful leads that help track down the stolen crypto, identify the attackers, and support legal action. The program is open to ethical hackers, white-hat researchers, and anyone who wants to help make crypto safer for everyone.

The CEO clarified that the loss came from CoinDCX’s reserves, not customer funds, and has already been covered. The platform remains fully operational and financially strong.

Announcing the @CoinDCX Recovery Bounty Program: Up to 25% of any recovered funds will be awarded to individuals or teams who can help trace and retrieve the stolen crypto.
Just to give more context:
-> We want to be upfront. The exposure was from our own reserves, and we have… https://t.co/GHHlxf3PxB
— Sumit Gupta (CoinDCX) (@smtgpt) July 21, 2025

.article-inside-link {
margin-left: 0 !important;
border: 1px solid #0052CC4D;
border-left: 0;
border-right: 0;
padding: 10px 0;
text-align: left;
}

.entry ul.article-inside-link li {
font-size: 14px;
line-height: 21px;
font-weight: 600;
list-style-type: none;
margin-bottom: 0;
display: inline-block;
}

.entry ul.article-inside-link li:last-child {
display: none;
}

Also Read :
WazirX News: Singapore Court Hearing Set for July 15, Reserve Date July 16
,

Gupta noted that the priority is to identify and catch the attackers, to help prevent such incidents across the entire crypto industry.

“Cybercrime is an attack on trust. And when one of us is targeted, all of us feel it,” the exchange shared in a blog post. It says that the bounty isn’t just about getting the money back, it’s about protecting trust in the Web3 ecosystem and setting a higher standard for security and response.

Users Raise Transparency Issues

Users have raised concerns about how crypto exchanges handle security issues. While global platforms like Bybit alert users within an hour of a wallet breach, Indian exchanges like WazirX and CoinDCX have taken several hours to do the same. These delays show the need for faster updates and more transparency from Indian crypto platforms.

This incident follows the $230M WazirX hack in 2024, highlighting growing threats to Indian crypto exchanges.

.article_register_shortcode {
padding: 18px 24px;
border-radius: 8px;
display: flex;
align-items: center;
margin: 6px 0 22px;
border: 1px solid #0052CC4D;
background: linear-gradient(90deg, rgba(255, 255, 255, 0.1) 0%, rgba(0, 82, 204, 0.1) 100%);
}

.article_register_shortcode .media-body h5 {
color: #000000;
font-weight: 600;
font-size: 20px;
line-height: 22px;
text-align:left;
}

.article_register_shortcode .media-body h5 span {
color: #0052CC;
}

.article_register_shortcode .media-body p {
font-weight: 400;
font-size: 14px;
line-height: 22px;
color: #171717B2;
margin-top: 4px;
text-align:left;
}
.article_register_shortcode .media-body{
padding-right: 14px;
}

.article_register_shortcode .media-button a {
float: right;
}
.article_register_shortcode .primary-button img{
vertical-align: middle;
width: 20px;
margin: 0;
display: inline-block;
}

@media (min-width: 581px) and (max-width: 991px) {
.article_register_shortcode .media-body p {
margin-bottom: 0;
}
}

@media (max-width: 580px) {
.article_register_shortcode {
display: block;
padding: 20px;
}

.article_register_shortcode img {
max-width: 50px;
}

.article_register_shortcode .media-body h5 {
font-size: 16px;
}

.article_register_shortcode .media-body {
margin-left: 0px;
}

.article_register_shortcode .media-body p {
font-size: 13px;
line-height: 20px;
margin-top: 6px;
margin-bottom: 14px;
}

.article_register_shortcode .media-button a {
float: unset;
}

.article_register_shortcode .secondary-button {
margin-bottom: 0;
}
}

Never Miss a Beat in the Crypto World!

Stay ahead with breaking news, expert analysis, and real-time updates on the latest trends in Bitcoin, altcoins, DeFi, NFTs, and more.

.subscription-options li {
display: none;
}
.research-report-subscribe{
background-color: #0052CC;
padding: 12px 20px;
border-radius: 8px;
color: #fff;
font-weight: 500;
font-size: 14px;
width: 96%;
}
.research-report-subscribe img{
vertical-align: sub;
margin-right: 2px;
}

var templateIds = “6”;
var listOfSubscribed = [];

function subscribed_popupmodal(template_id) {
var templateId = ‘6’;
getAllSubscriberCategoryList([templateId]);
var subcribemodal = window.parent.document.getElementById(‘subscribe-modal-design’);
if (subcribemodal) {
var modalContent = `

`;
subcribemodal.innerHTML = modalContent;
}
subscribe_unsubscribe_status(template_id);
//getAllSubscriberCategoryList(template_id);
}

function getAllSubscriberCategoryList(getcategoryId) {

jQuery.ajax({
url: ‘https://coinpedia.org/wp-admin/admin-ajax.php’,
type: ‘GET’,
data: {
action: ‘subscribe_api_ajax_request’,
apiurl: ‘/app/email_newsletter/list’,
},
success: function(response) {
var result = JSON.parse(response.message);

if (result.status === true) {

var idstosubscribed = []
// Populate listOfSubscribed with subscribed category IDs
result.message.forEach(listofcategory => {

if (listofcategory.subscribe_status === 1) {
if (!listOfSubscribed.includes(listofcategory._id)) {

listOfSubscribed.push(listofcategory._id);
}

if (!idstosubscribed.includes(listofcategory.news_cp_category_row_id)) {
idstosubscribed.push(listofcategory.news_cp_category_row_id);
}
}
});

idstosubscribed.forEach(id => {
var subscribeButton = document.getElementById(‘subscribe_’ + id);
var unsubscribeButton = document.getElementById(‘unsubscribe_’ + id);

if (subscribeButton && unsubscribeButton) {
subscribeButton.style.display = ‘none’;
unsubscribeButton.style.display = ‘block’;
var showDownloadReport = document.getElementById(‘download_report’);

if (showDownloadReport) {
showDownloadReport.style.display = ‘block’;
}
}
});
}

},
error: function(xhr, status, error) {
console.error(‘Error:’, error);
}
});
}

function logSelectedSubscriptions(categoryid) {
var unsubscribemodal = document.querySelector(‘.unsubscribed-popup-modal .modal’);
var subscribedmodal = document.querySelector(‘.subscribed-popup-modal .modal’);
unsubscribemodal.innerHTML=”;
subscribedmodal.innerHTML=”;
var selectedSubscriptions = [];
var storeCheckedId = [];
var checkboxes = document.querySelectorAll(‘#subscription-options-‘ + categoryid + ‘ input[type=”checkbox”]’);
var errorMessage = document.getElementById(‘error-message-select’);

// Use a Set to handle unique data-ids
var uniqueSubscribedIds = new Set(listOfSubscribed);

checkboxes.forEach(function(checkbox) {
var dataId = parseInt(checkbox.getAttribute(‘data-id’));
if (checkbox.checked) {

selectedSubscriptions.push(checkbox.id);
storeCheckedId.push(dataId);
} else {

uniqueSubscribedIds.delete(dataId); // Remove unchecked data-id
}
});

// Update listOfSubscribed with unique values
listOfSubscribed = Array.from(uniqueSubscribedIds);

var selectedSubscriptionsString = selectedSubscriptions.join(‘, ‘);
var concatinateSubscribeId = […new Set(storeCheckedId.concat(listOfSubscribed))];

var categoryData = {
‘subscribed_categories’: concatinateSubscribeId
};

var requestSubscriberData = {
action: ‘handle_dynamic_api_request_with_headers’,
security: ‘517259fdef’,

endpoint: ‘/app/email_newsletter/update_categories’,
token: ”,
data: categoryData
};

jQuery.ajax({
url: ‘https://coinpedia.org/wp-admin/admin-ajax.php’,
type: ‘POST’,
data: requestSubscriberData,
beforeSend: function(xhr) {
xhr.setRequestHeader(‘X-Requested-With’, ‘XMLHttpRequest’);
},
success: function(response) {
try {
response = response.data;

if (storeCheckedId.length === 0) {
var unsubcribedPopUpmodal =

`;
unsubscribemodal.innerHTML = unsubcribedPopUpmodal;
document.querySelector(‘#subscribe-modal-design .modal’).style.display = ‘none’;
unsubscribemodal.style.display = ‘block’;
unsubscribemodal.classList.remove(‘hide’);
unsubscribemodal.classList.add(‘show’);
document.getElementById(‘subscribe_’ + categoryid).style.display = ‘block’;
document.getElementById(‘unsubscribe_’ + categoryid).style.display = ‘none’;
var showDownloadReport = document.getElementById(‘download_report’);
if (showDownloadReport) {
showDownloadReport.style.display = ‘none’;
}

} else {

var subscribedPopupModal =

let selectedSubscriptionsArray = selectedSubscriptionsString.split(‘,’);
let subscribedCategories = selectedSubscriptionsArray.map(subscription => subscription.split(‘_’)[0]);
let subscribedCategoriesString = subscribedCategories.join(‘, ‘);

subscribedmodal.innerHTML = subscribedPopupModal;
if (document.getElementById(‘selectidname’)) {
document.getElementById(‘selectidname’).textContent = subscribedCategoriesString;
}

document.querySelector(‘#subscribe-modal-design .modal’).style.display = ‘none’;
subscribedmodal.style.display = ‘block’;
subscribedmodal.classList.remove(‘hide’);
subscribedmodal.classList.add(‘show’);
document.getElementById(‘subscribe_’ + categoryid).style.display = ‘none’;
document.getElementById(‘unsubscribe_’ + categoryid).style.display = ‘block’;
var showDownloadReport = document.getElementById(‘download_report’);
if (showDownloadReport) {
showDownloadReport.style.display = ‘block’;
}

}

} catch (e) {
console.error(‘Error parsing response:’, e);
}
},

});
}

function closeModal(template_id) {
var modalId = template_id;
var modal = document.querySelector(‘#’ + modalId); // Using querySelector to find the modal

if (modal) {
modal.classList.add(‘hide’);
modal.classList.remove(‘show’);
setTimeout(function() {
modal.style.display = ‘none’;
}, 500);

} else {
console.warn(‘Modal not found:’, modalId);
}
}

function closeunsubscribemodal() {
var unsubscribemodal = document.querySelector(‘.unsubscribed-popup-modal .modal’);

if (unsubscribemodal) {
unsubscribemodal.classList.add(‘hide’);
unsubscribemodal.classList.remove(‘show’);
}
setTimeout(function() {
unsubscribemodal.style.display = ‘none’;
}, 500);
}

function withoutLoginClicked(withoutlogin_id) {

localStorage.setItem(‘subscribe_without_Login’, ‘true’);
localStorage.setItem(‘subscribe_clicked_id’, withoutlogin_id);
}

document.addEventListener(‘DOMContentLoaded’, function() {

const subscribewithoutData = localStorage.getItem(‘subscribe_without_Login’);
const subscribe_clicked_cat_id = localStorage.getItem(‘subscribe_clicked_id’);

// Function to get cookies
function getCookie(name) {
let value = “; ” + document.cookie;
let parts = value.split(“; ” + name + “=”);
if (parts.length == 2) return parts.pop().split(“;”).shift();
}

// Get user token from cookies
const userToken = getCookie(‘user_token’);

if (subscribewithoutData === ‘true’ && userToken) {
// Call the modal function with the category ID
subscribed_popupmodal(subscribe_clicked_cat_id);

// Remove the flag and category ID from localStorage
localStorage.removeItem(‘subscribe_without_Login’);
localStorage.removeItem(‘subscribe_clicked_id’);
}
});

/************************** update susbcriber content **************************** */
function initializeSubscriptionButton() {
var initialListItems = document.querySelectorAll(‘.subscription-options input[type=”checkbox”]’);
initialListItems.forEach(function(item) {
console.log(item.checked, ‘Initial Checkbox checked status’);
});

var listItems = document.querySelectorAll(‘.subscription-options li’);
if (listItems.length === 0) return;

}

function updateSubscriptionButton() {
var listItems = document.querySelectorAll(‘.subscription-options li’);
if (listItems.length === 0) return;

// Update the button text based on whether any list item has the ‘active’ class
updateButtonText(anyActive);
}
document.addEventListener(‘click’, function(event) {
var clickedItem = event.target.closest(‘.subscription-options li’);
if (clickedItem) {
var checkbox = clickedItem.querySelector(‘input[type=”checkbox”]’);
if (checkbox) {
checkbox.checked = !checkbox.checked;
updateSubscriptionButton();
}
}
});

FAQs

What happened to CoinDCX?

CoinDCX experienced a $44.2 million hack on July 19, 2025, targeting an internal operational wallet used for liquidity. The exchange has confirmed customer funds are safe, as the loss was covered by its treasury, and has launched a recovery bounty program.

Are CoinDCX customer funds safe after the hack?

Yes, CoinDCX assured users that customer funds are 100% safe, as all user assets are stored in segregated cold wallets. The loss came from CoinDCX’s own treasury.

How did the hackers try to cover their tracks?

The hackers used Tornado Cash, a crypto mixer, to obscure the transaction trails of the stolen funds, making them more difficult to trace.

Source: https://coinpedia.org/news/coindcx-offers-massive-bounty-program-after-44m-hack/

25% Reward for Tracing Stolen Crypto

Users Raise Transparency Issues

Never Miss a Beat in the Crypto World!

Never Miss a Beat in the Crypto World!

Daily

Weekly

Monthly

You’ve Unsubscribed Successfully

Thank you for subscribing!

FAQs