On June 18, 2025, Iranian crypto exchange Nobitex confirmed a breach of its hot wallets, resulting in the theft of over $48 million in USDT on the TRON network. This incident led to significant repercussions for the company.
Details of the Hack
Nobitex reported unauthorized access to its hot wallets, which affected the exchange's infrastructure and internal systems. In response to the breach, the platform suspended all trading and withdrawal services. However, all user assets held in cold storage remain secure.
Who's Behind the Nobitex Hack
The hacking group Gonjeshke Darande, also known as 'Predatory Sparrow,' claimed responsibility for the attack on Nobitex. The group accused the exchange of facilitating terrorism and sanction evasion. They have threatened to leak the company's source code and sensitive internal data within 24 hours.
Cyber-War Tensions and Exchange Fallout
This attack marks the latest in a series of cyber incidents amid heightened tensions between Iran and Israel. Estimates of the stolen amount range between $48 million and $82 million, with suggestions that additional assets in Bitcoin, Dogecoin, and other tokens may also have been affected. Nobitex's website and mobile apps remain offline as the company works to stabilize operations and address user concerns.
The Nobitex hack highlights the vulnerability of cryptocurrency exchanges amidst rising cyber threats and political conflicts. The exchange has stated its intention to compensate for the losses, but the incident raises questions about security in the cryptocurrency space.
