Users of crypto portfolio tracker CoinStats lost $2 million in a hack
The developers have suspended the platform until the investigation is complete
24.06.2024 - 12:15
652
3 min
0
What’s new? Crypto portfolio tracker CoinStats has suspended operations following a security incident that the team said affected 1,3% of the platform’s internal wallets. The developers added that the vulnerability has already been fixed and connected wallets and centralized exchanges (CEXs) were not affected.
What else is known? The company published a Google doc listing the affected wallets, adding that the list may grow as the investigation progresses, but no significant changes are expected.
It now lists 1590 wallets. Owners have been advised to withdraw funds using the exported private key. Scammers may try to contact address owners offering “help,” warned one participant in the discussion on social network X.
In addition, the platform’s team reported a fraudulent push notification that was sent to some users of the iOS app. It informed about winning a lottery with a total prize pool of 200 ETH, as well as the launch of the CoinStats AirScout service, where all the user’s cryptocurrencies were allegedly transferred.
Later, the head of the platform Narek Gevorgyan noted that the total amount of damage is about $2 million, of which $800 000 comes from two wallets whose seed phrases were imported into CoinStats Wallet.
The CoinStats website states that the platform requests read-only access when connecting wallets, and therefore assets remain “perfectly safe under any conditions.” The platform offers users the ability to connect all their crypto wallets in different blockchains and use it as a shared cryptocurrency portfolio tracker.
Earlier this month, the leading aggregator of the crypto market, CoinGecko, faced a data leak. The reason for the incident was the hacking of a third-party mailing service provider. The personal data of almost 2 million CoinGecko users got into the network.
Useful material?
Telegram 
Twitter Incidents
The defendant helped move funds stolen through investment scams and earned at least $4 million for his role in the operation.
Jun 10, 2026
Incidents
The company is linking the incident to a compromised private key on a service wallet, rather than a smart contract exploit
May 22, 2026
Incidents
Following the incident, the project temporarily halted trading operations and node activity.
May 15, 2026
Incidents
The user spent weeks unsuccessfully trying to guess the password until Claude helped find an old wallet backup file
May 14, 2026
Crypto regulations
Authorities are introducing mandatory registration for companies handling cross-border crypto transactions
May 8, 2026
Incidents
According to Blockaid, the attack may have been carried out by the same hacker behind the 1inch Fusion V1 exploit.
May 7, 2026
Cryptocurrency rates
-
Bitcoin
$62 873
BTC
+0.22%
-
Ethereum
$2 551.16
ETH
+3.56%
-
BNB Smart Chain
$579.4
BSC
+1.23%
-
Ripple
$1.13
XRP
+1.19%
-
TRON
$0.160134
TRX
-1.59%
-
Dogecoin
$0.085295
DOGE
+0.62%
-
Zcash
$417.97
ZEC
-1.3%
-
Stellar XLM
$0.189096
XLM
-0.77%
-
Cardano
$0.168171
ADA
+2.29%
-
Polkadot
$3.32
DOT
+5.27%