European Crypto Payment Platform CoinsPaid Loses $37.3 Million in Cyberattack; Suspects Lazarus Group

European crypto payment platform CoinsPaid recently fell victim to a cyberattack, resulting in a staggering loss of $37.3 million. The Estonian firm provides seamless and secure payment solutions for cryptocurrency transactions and suspects the North Korean Lazarus Group as the culprits behind this devastating attack. This article will delve into the details of the incident, examining the impact on CoinsPaid, the suspected group behind the attack, and the steps being taken to recover and prevent future incidents.

Suspected culprit: Lazarus Group

CoinsPaid has strong reason to believe that the notorious Lazarus Group is responsible for the attack on their platform. This cybercriminal organization, known to have ties to North Korea, has gained notoriety for carrying out various high-profile attacks worldwide. Their previous targets include financial institutions, cryptocurrency exchanges, and government organizations, making them a strong possibility in this case.

Record low reward for cybercriminals

In a surprising turn of events, CoinsPaid claims to have offered a “record low” reward to the cybercriminals compared to the previously observed demands by the Lazarus Group. This suggests that the attack may not have been as successful as the perpetrators had anticipated or that CoinsPaid’s security measures were more robust than initially presumed.

Impact on CoinsPaid

While the attack has resulted in a significant monetary loss, client funds remain unaffected, providing some relief amidst the chaos. However, the incident has taken a toll on the platform’s availability and subsequent revenue. CoinsPaid is working diligently to fully restore its services and resume normal operations.

Expectations vs. Reality

CoinsPaid believes that the Lazarus Group underestimated the platform’s security measures and expected a more successful attack. This assumption is based on the lower reward offered to the cybercriminals, suggesting that they may have been caught off guard by CoinsPaid’s defenses.

Investigation and Report

In the wake of the cyberattack, CoinsPaid wasted no time initiating a thorough investigation into the incident. The company has also filed an official report with the Estonian law enforcement agency, seeking their expertise and assistance in tracking down the perpetrators.

Restoring of services

CoinsPaid is gradually restoring its services after experiencing partial downtime due to a cyberattack. While the process may take a few more days, the company is committed to ensuring a smooth operation of its systems and providing uninterrupted payment solutions to its clients.

Promise of Recovery

Max Krupyshev, the CEO of CoinsPaid, has vowed that the company will recover from this setback and continue to deliver reliable and secure payment solutions for cryptocurrency transactions. This commitment reflects the determination to overcome the hurdles caused by the cyberattack and emerge stronger than before.

Roundtable with victims

Understanding the importance of collaboration and sharing experiences, CoinsPaid plans to organize a roundtable discussion with victims of the Lazarus attack. By bringing together those affected by such incidents, the objective is to minimize the impact of future attacks and establish robust preventive measures throughout the industry.

Possible connection to other exploits

While the focus remains on the CoinsPaid cyberattack, there might be a connection to recent exploits on related platforms. According to MistTrack, previous attacks on the Atomic Wallet and Alphapo platforms bear similarities that could indicate the involvement of the same cybercriminals.

The cyberattack on CoinsPaid has resulted in a significant financial loss, but the prompt actions taken by the company have prevented any impact on client funds. As the investigation continues, CoinsPaid remains committed to recovering from this incident, gradually restoring its services, and delivering secure payment solutions. The suspected involvement of the Lazarus Group underscores the ongoing threats posed by sophisticated cybercriminal organizations. By organizing a roundtable with victims, CoinsPaid aims to create a united front against future attacks and strengthen the resilience of the cryptocurrency industry as a whole.

Explore more

Ethereum Uses AI Swarms to Proactively Patch Network Flaws

The architectural integrity of global decentralized networks has reached a pivotal juncture where the speed of malicious exploitation often outpaces the traditional cadence of human-led security audits. To address this widening gap, The Ethereum Foundation has fundamentally transitioned its security strategy from a reactive model to an automated, proactive defense paradigm that leverages the power of machine learning. This shift

How Is ERP Modernization Driving DLA to Audit Readiness?

The Defense Logistics Agency currently manages an intricate global supply chain that serves as the backbone for the United States military, requiring an unprecedented level of financial precision and operational transparency to meet modern oversight requirements. This massive undertaking involves a transition from aging, siloed legacy systems to a unified Enterprise Resource Planning environment designed to provide real-time visibility into

What Makes Odyssey Infostealer a Global Threat to macOS?

The long-standing myth that macOS remains immune to sophisticated cyberattacks has been decisively shattered by the emergence of the Odyssey infostealer, a highly specialized malware variant engineered to bypass modern system integrity protections. This transition represents a fundamental shift in the threat landscape, where the historical security-by-obscurity advantage once enjoyed by Apple users has entirely vanished. As the adoption of

Can AI Secure Windows Without Compromising Stability?

The sheer scale of modern software development has reached a point where manual code review is no longer sufficient to protect the billions of devices running Windows across the globe. As lines of code multiply and interdependencies become more complex, traditional security measures are struggling to keep pace with the rapid evolution of sophisticated digital threats. In response to this

Xero Launches JAX to Redefine Accounting with Agentic AI

Small business owners have historically spent an exhausting amount of time tethered to spreadsheets and receipts, but the emergence of agentic AI is finally turning those static records into a living, breathing financial command center that operates with minimal human oversight. With more than five million global subscribers now integrated into its ecosystem, Xero is spearheading a movement toward Accountable