The Nobitex crypto exchange reported a breach targeting its hot wallets and parts of its reporting infrastructure, prompting an investigation.
Circumstances of the Breach
According to Nobitex, the incident occurred on June 18, revealing a vulnerability in its hot wallets. The exchange immediately suspended access to all services and launched an internal investigation. Nobitex assured users that all damages would be compensated through its insurance fund and company resources.
Responsibility for the Attack
A group calling itself Gonjeshke Darande, or 'Predatory Sparrow,' claimed responsibility for the attack, labeling Nobitex as a key financial tool for the Iranian regime. The group accused the platform of aiding Iran's military and facilitating sanctions evasion. In a statement, they warned: 'We conducted cyberattacks against Nobitex. It is at the heart of the regime's efforts to finance terror worldwide.'
Consequences for Users
'Predatory Sparrow' threatened to release Nobitex's source code and internal documents within 24 hours, warning users that assets left on the exchange could be in jeopardy. While formal links to the Israeli government have not been confirmed, media outlets like Reuters and the Times of Israel have previously described the group as 'Israel-linked' due to its history of attacking Iranian infrastructure.
The Nobitex breach marks one of the largest security violations in the crypto industry in the Middle East this year, raising important questions about the growing intersection of cyber warfare and the global crypto economy.
