Kyrgyzstan Crypto Exchange Grinex Blames 'Unfriendly States' for $15 Million Heist, Shuts Down

By

Breaking: Grinex Halts Operations After $15 Million Hack

Grinex, a US-sanctioned cryptocurrency exchange registered in Kyrgyzstan, announced it is shutting down after a massive heist that saw approximately $15 million in digital assets stolen. The exchange directly blamed "unfriendly states"—specifically referring to Western special services—for orchestrating the attack.

Blockchain forensics firm TRM Labs confirmed the theft, identifying roughly 70 drained addresses, about 16 more than Grinex initially reported. Neither TRM nor fellow research firm Elliptic has disclosed how the attackers breached Grinex's defenses.

Quote from Grinex

"The digital footprints and nature of the attack indicate an unprecedented level of resources and technology available exclusively to the structures of unfriendly states," Grinex stated. "According to preliminary data, the attack was coordinated with the aim of causing direct damage to Russia's financial sovereignty."

Background

Grinex, which launched just 16 months ago, has been under nearly constant cyber assault since its inception. The exchange was already on the US sanctions list for allegedly facilitating financial activities linked to Russia. The latest attacks, according to Grinex, specifically targeted Russian users of the platform.

This incident marks one of the largest heists involving a sanctioned exchange operating in Central Asia. The $15 million figure, adjusted upward from Grinex's initial $13 million estimate, highlights the scale of the operation.

What This Means

The shutdown of Grinex underscores the growing vulnerability of cryptocurrency exchanges in regions subject to Western sanctions. State-backed hacking groups are increasingly using crypto platforms as a battleground for economic warfare.

For Russia, the loss of a sanctioned exchange that served its citizens raises questions about the security of alternative financial channels. For the global crypto industry, it signals a new era of targeted, high-resource cyberattacks that smaller exchanges may be ill-equipped to fend off.

Key Figures

• $15 million: Total value of stolen assets (per TRM Labs)
• 70+ addresses: Drained wallets identified by investigators
• 16 months: Time since Grinex began operations

As geopolitical tensions escalate, experts warn that more such heists are likely. "This is a warning shot for any exchange operating in contested financial zones," said a cybersecurity analyst who requested anonymity due to the sensitive nature of the case.

Read the full original article here.

Related Articles

• Google's New Fraud Defense: What You Need to Know About Its reCAPTCHA Successor
• 10 Critical Shifts Redefining the UX Designer Role in 2026
• JPMorgan's Second Tokenized Fund: Wall Street Embraces Ethereum for Asset Management
• Docs.rs Streamlines Build Process: Fewer Targets by Default Starting May 1, 2026
• Polygon's New Privacy Feature: Shielded Stablecoin Transfers Explained
• Digital Asset Bill Faces Firestorm of 100+ Amendments as Senate Markup Looms
• V2G Unveiled: Safety, Standards, and the Road Ahead for Australia's Bidirectional EVs
• How to Decentralize Merge-Mining with Stratum V2: A Guide to DMND and RootstockLabs Integration