Russia-linked Grinex exchange halts operations after $13 million ‘state-backed’ hack
The exchange, formerly known as Garantex and based in Kyrgyzstan, has been sanctioned by the U.S., U.K. and EU for helping users bypass sanctions.
What to know:
- Grinex cryptocurrency exchange suspended operations after a cyber attack drained about 1 billion rubles ($13 million) from its systems, which the platform attributed to state-backed actors.
- The exchange, formerly known as Garantex and based in Kyrgyzstan, has been sanctioned by the U.S., U.K., and EU for helping users bypass sanctions.
- Users are unable to access their funds while the company investigates, with 54 affected wallet addresses containing mostly USDT on the Tron blockchain.
“The digital footprints and nature of the attack indicate an unprecedented level of resources and technology available exclusively to the structures of unfriendly states,” the Grinex statement reads. “According to preliminary data, the attack was coordinated with the goal of inflicting direct damage on Russia’s financial sovereignty.”
Grinex itself was placed under sanctions by the U.S., U.K. and European Union last year. Officials in Washington D.C. have said the exchange, originally known as Garantex, helped users move funds around restrictions through a ruble-backed stablecoin known as A7A5.
The token allowed cross-border payments when Russia’s access to the Swift inter-bank messaging system was cut off over the country’s invasion of Ukraine. Shortly after being taken down, the platform resurfaced as Grinex.
