The Complete List Of Crypto Exchange Hacks

Cryptocurrency exchanges have become mainstream to allow individuals to buy, sell, exchange, and store cryptocurrencies. However, history has proven that exchanges have become targeted by hackers, particularly as the popularity and price of the digital assets have increased. This article will list the most popular crypto trading platforms that have been hacked and what we can learn from these incidents.

Can Cryptocurrency Exchanges Be Hacked?

Cyber security threats have been in existence since the beginning of the internet and occur on a daily basis using sophisticated means. Criminals and organised hackers are targeting exchanges to extract lucrative amounts of wealth. From 2012, at least 46 cryptocurrency exchanges have suffered major hacks. A record number of 19 crypto exchanges were compromised by hackers in 2019 alone, with the number decreasing in recent years.

Crypto Hacks: What Have We Learnt

  1. Cumulative amount of nearly USD $2.58 Billion has been stolen from crypto exchanges since 2012
  2. Since 2012, at least 46 Bitcoin exchanges have lost funds through a major cyber security breach
  3. Successful hacking attempts have decreased in 2021 with improvements to enterprise distributed storage solutions
  4. Most common form of hack was infiltrating the private keys to the exchange's hot wallet
  5. Exchanges with hot and offline wallets can still be compromised while transferring funds for withdrawals
  6. Difficult to verify whether cold wallet solutions used are 100% offline as stated by the exchange
  7. Lack of visibility on internal security processes and adherence to strict management protocols
  8. Best method to store cryptocurrency assets is still using a personal hardware wallet
crypto exchange hack amount

Amount of reported funds lost in crypto exchange hacks since 2014.

List of Cryptocurrency Exchange Hacks



Cause of Hack

Amount Stolen USD

2021, August 19


Obtained access to hot wallet

$97 million

2021, April 29


Obtained access to hot wallet


2020, December 23


Compromised system/servers


2020, December 21


Obtained access to hot wallet

$4 million

2020, December 1

BTC Markets

Internal staff error/mistake

270,000 user's private details

2020, September 25


Data leak

$275 million

2020, July 11



$3.1 million

2020, June 29


Vulnerability in protocol


2020, April 19

Bugs and Re-entrancy attack

$24.5 million

2020, April 19


Bugs and Re-entrancy attack


2020, February 5


Obtained access to hot wallet


2019, December 19


Obtained access to hot wallet


2019, November 26


Obtained access to hot wallet

$49 million

2019, November 5




2019, July 11


Compromised system/servers

$32 million

2019, June 27


Compromised system/servers

$4.5 million

2019, June 6



$9.5 million

2019, May 7


Obtained access to hot wallet

$40 million

2019, March 29



$29 million

2019, March 25


Suspected trusted insider

$40 million

2019, March 24



$1 million

2019, February 15


Data leak

450,000 user's private details

2019, January 26


Phishing data on fake site


2018, October 28


Suspected trusted insider


2018, September 14


Obtained access to hot wallet

$60 million

2018, June 18



$31 million

2018, June 10



$40 million

2018, April 13


Suspected trusted insider

$3.5 million

2018, February 10


Suspected trusted insider

$146 million

2018, January 27



$560 million

2017, December 20


Server DNS compromised

$1.4 million

2017, July 5



$7 million

2017, April 22


Obtained access to hot wallet

$5.3 million

2017, January 14-17



$16 million

2016, August 2



$623 million

2016, May 9


Obtained access to hot wallet

$2.14 million

2016, April 7-9


Suspected trusted insider


2016, February 16



$1.75 million

2015, December 11



$5 million

2015, August 15


Suspected trusted insider

$1.65 million

2014, July 13


Obtained access to hot wallet

$2 million

2014, March 4


Obtained access to hot wallet


2014, February

Mt. Gox

Various methods

$460 million

2013, November 11


Compromised system/servers


2012, September 12


Compromised system/servers


2012, March 1


Compromised system/servers


If we have missed any crypto exchanges that have been hacked, let us know by contacting us.

List of Cryptocurrency Exchange Hacks 

The following cryptocurrency exchanges have been affected by cyber security hacks that have resulted in a loss of customer assets or suffered from a data privacy breach since their inception to the market. This list of exchanges include centralized, de-centralised, wallets and leverage trading platforms.

2021 Hacks

Liquid - August 19, 2021

The Japanese cryptocurrency exchange Liquid is the latest victim in a major cyber hack that has resulted in the loss of approximately $97 million according to reports. The funds comprised mainly of Bitcoin, Ether, XRP, Tron and 65 other coins that were sent out by the hackers to other exchanges or decentralized platforms such as UniSwap and SushiSwap to avoid the assets being frozen. Liquid has upgraded its security infrastructure to new secure vaults in order to resume trading services.

Popular derivatives trading platform FTX that is led by its CEO Sam Bankman-Fried, has loaned $120 million to Liquid Global to ensure all customers affected are protected and the exchange can re-establish its balance sheet to meet financial and regulatory obligations. 

Hotbit - April 29, 2020 

Hotbit is a popular cryptocurrency exchange that has nearly 2 million registered users worldwide. On April 29,2021, the exchange announced that it has suspended all services to investigate a serious cyber attack on its systems. According to reports, the hackers attempted to access the exchange’s hot wallets that store a small portion of customer's funds but was denied access by internal systems. While unsuccessful in stealing funds, the hackers were able to compromise an internal database which included user's information such as phone numbers, email addresses and portfolio information on assets.

2020 Hacks

Livecoin - December 23, 2020

The Russian cryptocurrency provider Livecoin suffered a major security breach on the December 23, 2020. The exchange had lost control of its servers with the hackers changing the exchange rate of the asset prices. The Bitcoin and Ethereum prices were changed from $23,000 at the time to more than $450,000 and $15,000 respectively. The hackers were able to cash out their cryptocurrencies into huge profits with the exchange unable to do much without control of its systems.

EXMO - December 21, 2020

The popular crypto exchange in the UK based in London was hacked for 6% of the total crypto assets held on EXMO on December 21, 2020. According to a company spokesperson, the hacker had access to the hot wallet private keys that enabled access to the funds. Approximately $4 million in customer were withdrawn from the exchange through Poloniex which have not been recovered.

BTC Markets - December 1, 2020

BTC Markets is one of the best cryptocurrency exchanges within Australia since 2013 and has been incident free. While technically not an exchange hack, on December 2020, BTC Markets exposed the names and email address of thousands of users in an email that went undetected. The information security incident affected all traders on the platform that could potentially be used for unlawful activity.

KuCoin - September 25, 2020

KuCoin, one of the most popular exchanges for trading altcoins was hacked on September 25, 2020. The incident resulted in the loss of approximately USD $275 million in digital currency assets held by the exchange. The cause of the hack was revealed to be a leak of private keys to KuCoin's hot wallets that facilitate withdrawals from the exchange.

All of customers funds that were stolen in the attack were covered by Kucoin's insurance fund. According to reports, $204 million in crypto assets that were lost during the hack were recovered and potential suspects involved with the attack were reported to Police.

Cashaa - July 11, 2020

The UK based crypto platform Cashaa stopped all crypto-related transaction on July 11, 2020 after a hacker was able to withdraw 336 Bitcoins, valued at $3.1 million in a 3-minute window. The cause of the attack was due to the hackers installing malware on a computer used to perform withdrawals. The malware notified the hacker when an employee logged on and hi-jacked the wallet to transfer 336 BTC to their own address.

Balancer - June 29, 2020

Decentralized finance (DeFi) liquidity provider Balancer, that provides non-custodial asset management reported it was the victim of an elegant hack. The hackers were able to exploit a vulnerability that resulted in about $500,000 worth of tokens being stolen from its pool. The nature of the attack was technically sophisticated with extensive knowledge and understanding of the leading DeFi protocols. The project was not able to refund or compensate the attacker’s victims. & Uniswap - 19 April, 2020

Lendf.Me was a popular decentralized lending platform that enables instant borrowing and withdrawal capabilities on the Ethereum network. In April 2020, the lending service suffered a major blow with 99.95% of funds or 24.5 million dollars being stolen in a hack. 

According to reports, the hackers were able to exploit bugs in the platform across different blockchains to perform a "re-entrancy attack." This allows the hacker to withdraw funds repeatedly before the original transaction is approved or declined. Uniswap was also targeted using the same tactic and lost between $300,000 and $1.1 million suggesting the same hacker or group of hackers were involved.

Altsbit - February 5, 2020

The relatively small Italian cryptocurrency platform Altsbit was hacked on February 5, 2020. Almost all funds lost were stored by the exchange in hot wallets, reportedly about $70,000 in Bitcoin and Ether. Only a small portion of the assets held by the exchange were stored in cold wallets at the time. This practise was not in line with best industry practise as the majority of funds should be kept in isolated storage. Altsbit partly reimbursed its customers before shutting down later in May.

Yapizon & Youbit - December 19, 2020

The Korean cryptocurrency platform Yapizon was first hacked for 3,816 BTC or roughly $5.3 million USD worth of bitcoins on Saturday, April 22 in 2019, which equated to approximately 37% of holdings at the time. The company made the decision to spread the losses over all customers on the exchange to reduce the burden on the affected users. 

yapizon hack

Following this incident, the company decided to rebrand the exchange under the name YouBit. However, the exchange suffered another cyber attack and lost 17% of its assets on December 19, 2020. The company did not specific which cryptocurrency assets were stolen in the attack or the total amount. Youbit later filed for bankruptcy as a result and is no longer available to use.

2019 Hacks

Upbit - 2November 26, 2019

Upbit is another Korean crypto platform that was the victim of a cyber security breach in 2019. Several large transactions were identified moving from their hot wallet and notified their users of a security breach. The theft occurred when the exchange was allegedly moving assets between hot and cold storage facilities. The hackers stole 342,000 ETH that was value at $49 million at the time. The funds have moved to several unknown wallets and is yet to be cashed out.

Vindax - November 5, 2019

Vietnam-based crypto exchange VinDAX was launched in March 2019 that is focussed on token sales for new blockchain projects. In the same year, the exchange was the victim of a hack for at least $500,000 worth of cryptocurrencies. 

Bitpoint - July 11, 2019

Another Japanese crypto exchange to be hit by hackers that ran off with $32 million of funds from hot and cold wallets that included Bitcoin, Bitcoin Cash, Ether, Litecoin and XRP. Roughly $23 million dollars involved in the hack belonged to the exchange's customers. Given funds were stolen from offline and online wallets, the security systems of the exchange were thoroughly compromised by the hackers. The exchange was later shutdown as a result.

Bitrue - June 27, 2019

Bitrue is a popular Singaporean crypto exchange that was hacked for over 4.5 million dollars worth of cryptocurrencies on 27 June, 2019. The attacked exploited a vulnerability within the exchange's security measures to access funds of 90 customers, that comprised of 9.3 million XRP and 2.5 million ADA. Bitrue is currently the 68th largest crypto exchange according to coinmarketcap and is well known for their wide variety of XRP trading pairs and advanced trading platform.

Gatehub - June 6, 2019

$9.5 million was stolen and 1.4 million accounts of customers personal details and passwords were leaked in the Gatehub wallet hack in 2019. Over 3.7 gigabytes worth of user's 2FA keys and recovery seeds were compromised and published to a popular hacker site in August.

Binance - May 7, 2019

Binance is one of the world's largest cryptocurrency exchanges by popularity and rating #1 by trading volume and overall liquidity. The platform is now on the list of hacked exchanges due to a large-scale security breach that occurred on May 7, 2019. Hackers stole 7,000 Bitcoin or approximately $40 million in assets from a single hot wallet that contained about 2% of the total BTC holdings.

Binance CEO, CZ


According to Binance CEO, Changpeng Zhao, commonly known as "CZ", some user two-factor authentication codes and API tokens were compromised during the attack. According to the Binance Blog, the attackers used a variety of methods to exploit Binance's security systems that included phishing, viruses and other vectors. Customers that were affected by the hack were reimbursed in full with funds taken from the exchange's insurance fund. 

Bithumb - March 29, 2019, June 18, 2018 & July 5, 2017

The Korean cryptocurrency currency exchange is a repeat offender on our list and has been involved in 3 separate hacking incidents within a 3 time period. The first Bithumb hack happened in July 2017 where hackers stole $7 million in Bitcoin and Ethereum, while the second incident took place in June 2018 that resulted in a loss of $31 million worth of Ripple (XRP).

Bithumb was hacked again on March 29, 2019 for nearly $20 million XRP tokens from its hot wallets. The exchange was later found guilty of negligence and should have allocated more resources in terms of security to prevent the massive data breach incident. The cause of the hack is largely unknown, however a Security report detailing the findings has linked 2 of the hacks to Lazarus Group.

Bithumb Hacked


Coinbene - March 25, 2019

Another crypto exchange that suffered a hack in 2019 is Coinbene. Large transactions were identified leaving the exchange on March 25 to an unknown wallet address. It was reported that almost as $40 million in ERC-20 tokens had left the exchange. Coinbene has denied any involvement with the hack and did not respond to any questions regarding a possible hack that raised further questions.

DragonEX - March 24, 2019

The Singaporean exchange DragonEX was exploited by hackers on March 24, 2019. DragonEX announced in its official Telegram channel it had suffered a cyber security attack. The estimated amount of funds stolen is estimated to be more than $1 million. The exchange is currently still active however has not recovered from the incident with very low trading volume and liquidity. 

Coinmama - February 15, 2019

Coinmama is a well-known cryptocurrency platform that allows individuals to buy crypto using a credit or debit card. Bitcoin and other digital assets are not stored on the exchange which significantly reduces the risk of theft. However, the exchange suffered a wide-scale data breach that affected 450,000 user's in 2019. The customers email addresses and passwords were leaked in a massive global hack that involving 24 websites and some 747 million records. 

LocalBitcoins - January 26, 2019

The popular peer-to-peer (P2P) platform suffered a security breach that lasted  only a few hours in January 26, 2019. Hackers were able to steal around 7.9 Bitcoins worth $27,000 at the time. The cause of the breach was due to hackers phishing customers login credentials and 2FA one-time codes from a LocalBitcoins forum, not the exchange directly.

2018 Hacks

MapleChange - October 28, 2018

The Canadian crypto exchange known as MapleChange closed down in 2018 following a hack on October 28. Approximately 8 Bitcoins, worth about $51,00 USD at the time were drained from the accounts. There are rumours of an exit scam as the websites social media profiles were deleted following the "hack".

Zaif - September 14, 2018

The Japanese-based crypto exchange Zaif had approximately $60 million in cryptocurrency assets stolen. Bitcoin, Bitcoin Cash, and MonaCoin were the 3 digital currencies transferred out from hot-wallets on September 14, 2018. Zaif refunded lost holding by affected customers and resumed full services and is currently a top 50 cryptocurrency exchange by trading volume, traffic and liquidity according to coinmarketcap. 

Coinrail - June 10, 2018

South Korean based crypto trading platform Coinrail lost more than $40 million in Initial Coin Offering (ICO) tokens that were held by the exchange. A number of ERC-20 tokens were stolen from the exchange that comprised of 1,927 ether, 2.6 billion NPXS, 93 million ATX and 831 million DENT coins.  

CoinSecure - April 13, 2018

CoinSecure was an Indian cryptocurrency platform that allowed the trading of Bitcoins with Rupees. In 2018, the exchange suffered a massive hack that resulted in the loss of 438 Bitcoins that was the equivalent to $3.5 million at the time. An internal staff member at CoinSecure was blamed for a incident as he was the only person with access to the private keys. Incidents like this may have contributed to the regulatory authorities in India deciding to declare Bitcoin as illegal in the country.

Bitgrail - February 10, 2018

The founder of Bitgrail was accused of "hacking itself" to steal around 146 million dollars worth in cryptocurrency from the trading platform. According to reports, 230,000 users on the platform were affected by the hack in early 2018. Further to legal proceedings, it was concluded the exchange and its owner was personally at fault and to be declared bankrupt to return as much of the money to the customer's as possible.  

Coincheck - January 27, 2018

In one of the largest hacks in recent years, Japanese cryptocurrency exchange Coincheck was involved in a cyber security attack in 2019. The incident resulted in the theft of digital currencies worth $560 million at the time. The exchange accepted it was responsible for contributing to the security incident as it had stored large amounts of customer funds on hot wallets instead of cold wallets.

2017 Hacks

EtherDelta - December 20, 2017

EtherDelta is a decentralized cryptocurrency exchange that does not store cryptocurrency assets. The website used to host the service was hacked and replaced with a fake website that had the same appearance. The hackers were able to obtain the customers login information steal their funds. The hackers managed to successfully steal approximately $1.4 million worth of cryptocurrencies.

Cryptopia - January 14-15, 2017

The New Zealand crypto exchange Cryptopia was hacked on several occasions between January 14-17 in 2017. The report amount of assets lost during the incident was 9.4% of its total holdings stolen, which equated to around $16 million at the time. The Cryptopia breach is regarded as one of the biggest exchange hacks in New Zealand's history. 

Once the security breach was first identified, the exchange was put into 'maintenance-mode' and was subjected to another hack that resulted in a further loss of $180,000. Unfortunately for the company, the exchange was hacked a third time while under liquidation. $45,000 of the cryptocurrency XSN had been transferred out of its cold wallet without authorization.

2016 Hacks

Bitfinex - August 2, 2016

Bitfinex is one of the most popular cryptocurrency in the world that is currently ranked #5 in terms of reported trading volume, liquidity and traffic. Founded in 2012, Bitfinex has been the go-to destination for advanced trading and charting tools for cryptocurrency traders.

Over its journey, Bitfinex has been involved in a few incidents, most notably the incident on August 2, 2016 where an unauthorized transfer of approximately 120,000 Bitcoins was made from the exchange. The value of the Bitcoin at the time of the incident was nearly $623M as reported by Coindesk. 

To date, the funds have not been cashed out using another exchange or been recovered. Bitfinex has even offered rewards to identify the perpetrators. According to a Bitfinex blog post, a reward of 5% of the total property recovered (or equivalent funds or assets at current market values) will be given. 

Gatecoin - May 9, 2016

Launched in 2013, the Hong Kong based crypto exchange was one of the first regulated platforms in the world. Gatecoin was a victim of a cyber attack whereby hackers managed to get access to the private keys to customer funds in hot wallets. The exchange claimed that it lost as much as 185,000 ethers and 250 bitcoins that was worth  $2.14 million at the time. Gatecoin never recovered from the theft and eventually went into liquidation.

Shapeshift - March 14, 2016

Shapeshift is an instant swap platform and trading exchange that offers a variety of digital assets. The exchange was founded in 2014 and led by Erik Voorhees who is a prominent figure in the crypto industry. Shapeshift was hacked 3 times by an employee working for the company. The first incident took place on 14th March and resulted in the loss of 315 Bitcoin.

The theft continued over the next few days and additional Bitcoin and Ethereum were removed. In total, approximately $230,000 worth of crypto assets were lost.  The hacker even sold Shapeshift key security data and forced the exchange to suspend its service to improve its security infrastructure.

BTER - February 16, 2016

The Chinese Bitcoin exchange BTER lost 7,170 bitcoin in a hack from its cold wallet that was worth more than $1.75 million at the time. BTER was compromised several month before this incident in 2015 where a hacker penetrated the exchange's servers. NXT tokens were transferred off the exchange valued at $1.65 million at the time. A spokesperson for BTER admitted this incident was their own fault and BTER has since been taken down.

2015 Hacks

Bitstamp - December 11, 2015

Almost 19,000 Bitcoins were stolen from Bitstamp's hot wallets worth nearly 5 million dollars at the time. The total amount stolen represented only a small portion of the customer funds held under custody on offline cold storage wallets. A staff member working at the exchange was victim to a social engineering attack in which they were persuaded to open and distributes files containing malware. The files were executed and the attacker was ultimately able to obtain the backup passphrase to Bitstamp's hot wallet.

Mintpal - July 13, 2014

Mintpal faced a major hack on July 13, 2014 where the attacks stole 8 million Vericoin worth about 2 million dollars that was equivalent to approximately 30% of the circulating supply. The stolen coins were left on a hot wallet at the time of the theft. Bitcoin, Ethereum and Litecoin funds on exchange cold wallets were not affected.

Poloniex - March 4, 2014

The popular trading platform Poloniex lost about 12.3% of its total Bitcoin holdings in an attack in 2014. A hacker had reportedly exploited a vulnerability in the exchange’s coding that allowed access to the private keys for the funds. Trading was halted as the hackers successfully transferred about 76 Bitcoins from the exchange worth $50,000 at the time. 

The USA crypto exchange has claimed that 100% of  the customers who experienced a financial loss have now been reimbursed.  

Mt. Gox - February 2014

One of the most well known and famous cryptocurrency exchanges to be hacked was Mt. Gox. The exchange was based in Japan and was the largest trading platform in 2014 that handling over 70% of all bitcoin (BTC) transactions worldwide. The exchange was the victim of multiple security breaches in its earlier years. However, in 2014 a devastating hack resulted in a loss of 740,000 Bitcoins belonging to its customers and 100,000 owned by the exchange. This was a significant hack considering the number of Bitcoins that had been mined at the time and in circulation.

mt gox hack


The estimate total theft amount was valued at $460 million and was the biggest hack in history at the time which ultimately crashed the Bitcoin price. Immediately after the incident, the company suspended all deposits & withdrawals and filed for bankruptcy in Japan. The Mt. Gox caused significant damage to the reputation of the industry and took years to recover and restore confidence in using centralized exchanges.

2013 Hacks

Bitcash - November 11, 2013

Older exchange hack from 2013 that affected Czech Republic-based bitcoin exchange Nearly 4,000 customer accounts were robbed for an estimated total value of 2 million Czech koruna, or the rough equivalent to $100,000 at the time.

Bitfloor - September 12, 2012

Bitfloor was a licenced cryptocurrency platform in the United States that was based in New York. Bitfloor was the 4th largest exchange that accepted US Dollars at the time. On September 12, 2012, Bitfloor's servers that stored unencrypted backups of the wallet keys were compromised that led to hackers removing 24,000 Bitcoin that was valued at approximately $250,000.

Bitcoinica - March 1, 2012

Bitcoinica was a cryptocurrency brokerage that specialised in leveraged CFD's with Bitcoin to USD pairs. The platform suffered a major theft in 2011 that resulted in the loss of 18,547 Bitcoins worth $87,000 at the time. Today, the amount of lost Bitcoin would be the equivalent of 681 million at current market prices.  

Frequently Asked Questions

How Many Crypto Exchanges Have Been Hacked?

According to our research, a total of 45 exchanges have been compromised resulting in the theft of customers funds or personal information. In 2021, the number of hacked exchanges has decreased by 62.5% which is based on confirmed and reported incidents, with some exchanges being hacked on multiple occasions. 

Has Anyone Been Hacked On Coinbase?

The widely popular digital currency platform Coinbase has never been hacked since the exchange was founded in 2012. There have been reports of customers accounts been hacked, however, these incidents are most likely associated with the individual's login details being hi-jacked through common cyber threats such as malware, phishing and social engineering attempts.

Can Binance Be Hacked Again?

Since the Binance Exchange hack on May 7, 2019 there has been no further security breaches or incidents that have resulted in any loss of customer funds of personal details. Binance does have an insurance fund to be able to reimburse its customers of a future security breach. However, there can never be any guarantees and customers should never leave all their funds on Binance.

When Was The Last Cryptocurrency Exchange Hack?

Hotbit is the latest crypto exchange to be hacked when it suspended its trading services on April 29,2021 to investigate a serious cyber security breach on its systems. The hackers attempted to access the exchange’s hot wallets that store a small portion of customer's funds but was denied access. The criminals left with user's information such as phone numbers, email addresses and portfolio information on assets.


This article should serve as a reminder to never leave funds idle on a centralized exchange and remove them to a safe storage place such as a reputable hardware wallet. The majority of the above exchange practised reasonable due-diligence and had implemented layers of security measures to ensure funds were protected, yet were still compromised by hackers and cyber criminals.

While the number of hacked crypto exchanges are decreasing, it is not worth taking the risk with your Bitcoin and cryptocurrency investments. To protect your crypto wealth from hackers, read our related articles on Bitcoin private keys and get a hardware wallet such as the Ledger Nano X or CoolWallet Pro.

Here are a few other hand-picked articles to read next:

Default image
Kevin Groves
Kevin is the founder of hedgewithcrypto and is passionate about blockchain technology. He has been involved with Bitcoin since 2016 and is a swing trader with over 10 years of experience. He loves trading crypto using various platforms and helping others learn about cryptocurrencies via hedgewithcrypto.