Russia-Linked Crypto Exchange Grinex Halts Operations After $15 Million Cyber Attack

yesterday / 21:57 3 sources negative

Key takeaways:

  • The attack highlights persistent vulnerabilities in sanctions-evasion platforms, potentially disrupting Russian crypto liquidity channels.
  • USDT's fungibility is tested as hackers convert to TRX/ETH, revealing stablecoins' dual role in illicit finance and evasion tactics.
  • Watch for increased regulatory scrutiny on ruble-backed stablecoins like A7A5, which processed over $100B in transactions.
ETH ETH $2350.34 -0.28%
USDT USDT
TRX TRX $0.33 -0.06%

A major cyber attack has forced the Russia-linked cryptocurrency exchange Grinex to suspend all trading and withdrawal services. The exchange, registered in Kyrgyzstan, announced the halt on Thursday following what it described as a "large-scale cyberattack" targeting its wallet infrastructure.

The exchange claims the attack resulted in the theft of approximately 1 billion Russian rubles, valued at roughly $13 million to $15 million. In an official statement, Grinex framed the incident as a coordinated assault by "foreign intelligence services" or "hostile state" actors, alleging the "digital footprints" and sophistication of the hack pointed to resources and technology available only to such entities. The statement further claimed the operation was designed "with the aim of directly harming Russia's financial sovereignty" and restricting cryptocurrency flows out of the region.

Blockchain intelligence firm Elliptic provided on-chain analysis, confirming the suspected attacker drained approximately $15 million in USDT (Tether) from wallets linked to Grinex. The stolen USDT was then routed through addresses on the Tron and Ethereum networks before being converted into TRX (Tron) and ETH (Ethereum). Elliptic noted this conversion was likely an attempt to reduce the risk of the stolen stablecoins being frozen by Tether, which retains the ability to blacklist USDT linked to illicit activity.

Elliptic also detailed Grinex's connections to the broader Russian crypto ecosystem. The firm described Grinex as one of the largest venues for exchanging Russian rubles into crypto assets and identified it as a primary platform for trading A7A5, a ruble-backed stablecoin created as part of Russian sanctions-evasion efforts. Elliptic estimates A7A5 has processed over $100 billion in transactions.

Furthermore, Elliptic connected Grinex's rise to the sanctioned Russian exchange Garantex. Grinex is seen as a likely successor to Garantex, which was targeted by the U.S. Treasury's Office of Foreign Assets Control (OFAC) for laundering "hundreds of millions of dollars" tied to ransomware, darknet markets, and state-sponsored hackers. After Garantex was shut down, much of its liquidity and user base migrated to Grinex, with Elliptic suggesting the platforms share common ownership and management.

ETH ETH Ethereum $2350.34 -0.28%
Negative short-term pressure as stolen USDT converted to ETH creates selling overhead; long-term impact muted as incident is exchange-specific, not protocol-level. Regulatory scrutiny risk elevated.
TRX TRX Tron $0.33 -0.06%
Negative news-driven pressure likely as TRX was used to launder stolen funds from a sanctioned Russian exchange, increasing regulatory scrutiny risk and tainting network perception.
Sources
Trading Halted: Another Crypto Exchange Goes Dark After Cyber Attack
Bitcoinist.com 16.04.2026 21:13
Russia-linked Grinex exchange suspends operations after $15 million hack, blames 'hostile states'
theblock.co 16.04.2026 21:10
Russian Exchange Grinex Suspends Trading Following $13M Hack
crypto-economy.com 16.04.2026 22:21
Top Today
yesterday / 20:42 9 sources
Risk-On Sentiment Fuels Major Currency Shifts, Bolstering Commodity-Linked Currencies Against Weakening US Dollar
yesterday / 16:19 7 sources
U.S.-Brokered 10-Day Ceasefire Between Israel and Lebanon Averts Regional Crisis, Impacting Market Sentiment
yesterday / 16:12 5 sources
Zonda Exchange Loses Access to $334M Bitcoin Cold Wallet Amid Withdrawal Crisis
BTC BTC $75135.60 +0.51%
yesterday / 15:27 19 sources
Charles Schwab Launches Spot Bitcoin and Ethereum Trading for Retail Investors
ETH ETH $2350.34 -0.28%
BTC BTC $75135.60 +0.51%
yesterday / 14:27 11 sources
DeFi Security Crisis: Hyperbridge Losses Soar to $2.5M as Drift Secures $127.5M Tether Lifeline Post-Hack
yesterday / 13:52 16 sources
Tether Leads $147.5M Rescue of Drift Protocol, Replaces USDC with USDT After $270M+ Exploit
USDC USDC $1.00 +0.01%
DRIFT DRIFT
USDT USDT
yesterday / 13:39 8 sources
RippleX Exec Highlights Regulatory Hurdles as Key Barrier to XRPL Tokenization Growth
XRP XRP $1.46 +4.52%
Disclaimer

The content on this website is provided for information purposes only and does not constitute investment advice, an offer, or professional consultation. Crypto assets are high-risk and volatile — you may lose all funds. Some materials may include summaries and links to third-party sources; we are not responsible for their content or accuracy. Any decisions you make are at your own risk. Coinalertnews recommends independently verifying information and consulting with a professional before making any financial decisions based on this content.