CoinStats: Hacker Group Successfully Steals More Than IDR 35 Billion In Crypto Form

The hacker group managed to steal more than Rp35 billion in crypto (Photo; Doc. Crypto Vantage)

JAKARTA - Crypto asset tracking app CoinStats revealed details about the security incident that occurred in June. The company reported that a very skilled group of attackers, allegedly affiliated with the state, managed to access the private keys of the 1,590 CoinStats wallet, resulting in theft of around US$2.2 million (approximately Rp35 billion) in crypto assets.

According to The Block's information, CoinStats said that a hacker group known as the Lazarus Group, or possibly another hacker group backed by the state, was most likely responsible for the attack. The attackers managed to compromise several services related to private wallet key storage, including outside the CoinStats platform.

Security experts, such as MetaMask's ZachXBT and Taylor Monahan, are currently tracking the stolen funds. The report also states that this attack has been reported to the authorities.

In June, CoinStats had warned its users to move funds from wallets created on the platform after attackers hijacked the platform and sent fake notifications to mobile device users. The attack affected 1,590 wallets, or about 1.3% of CoinStats' total wallets.

In response to this violation, CoinStasis immediately took the following action:

Through cooperation with law enforcement and security researchers, strong enough evidence suggests that this attack was carried out by Lazarus Group or related groups, with the level of expertise and state resources. It is important to note that wallets and exchange accounts connected to CoinStatus for portfolio tracking, such as MetaMask, Phantom, or Binance, are not affected by this incident. CoinStats is committed to maintaining the integrity and security of its platforms, and they are now fully operational again after taking the necessary steps.