Alphabiz - Major Security Breach at Upbit Results in KRW 44.5 Billion Crypto Theft

속초1.4℃
북춘천-3.2℃
철원-6.5℃
동두천-4.9℃
파주-6.6℃
대관령-7.3℃
춘천-2.3℃
백령도3.4℃
북강릉1.1℃
강릉3.9℃
동해1.5℃
서울-1.5℃
인천-1.1℃
원주-3.2℃
울릉도5.5℃
수원-3.5℃
영월-3.6℃
충주-3.3℃
서산-3.8℃
울진1.1℃
청주-1.0℃
대전-2.4℃
추풍령-4.1℃
안동-4.9℃
상주-0.6℃
포항2.8℃
군산-2.3℃
대구-1.6℃
전주-1.8℃
울산2.4℃
창원3.5℃
광주-0.2℃
부산4.7℃
통영1.4℃
목포1.6℃
여수2.6℃
흑산도5.8℃
완도3.1℃
고창-2.7℃
순천-3.6℃
홍성-3.8℃
서청주-4.4℃
제주6.6℃
고산6.1℃
성산4.9℃
서귀포6.7℃
진주-3.9℃
강화-3.2℃
양평-2.6℃
이천-3.7℃
인제-1.4℃
홍천-2.0℃
태백-5.5℃
정선군-5.9℃
제천-6.0℃
보은-4.9℃
천안-4.5℃
보령-1.4℃
부여-4.6℃
금산-3.6℃
세종-2.9℃
부안-1.4℃
임실-4.4℃
정읍-2.4℃
남원-3.5℃
장수-5.9℃
고창군-1.9℃
영광군-2.1℃
김해시1.3℃
순창군-4.1℃
북창원1.2℃
양산시0.9℃
보성군2.0℃
강진군-0.7℃
장흥-2.1℃
해남-2.6℃
고흥-2.1℃
의령군-6.1℃
함양군-5.2℃
광양시0.1℃
진도군-1.0℃
봉화-7.1℃
영주-5.1℃
문경-2.5℃
청송군-6.8℃
영덕2.5℃
의성-6.0℃
구미-3.3℃
영천-4.5℃
경주시-2.3℃
거창-6.6℃
합천-3.5℃
밀양-2.7℃
산청-3.8℃
거제4.1℃
남해1.9℃
북부산-2.3℃

2025.12.18 (목)
모바일버전

Major Security Breach at Upbit Results in KRW 44.5 Billion Crypto Theft: Reporter Kim Jisun / approved : 2025-11-28 03:56:15

Photo courtesy of Upbit

[Alpha Biz= Kim Jisun] South Korea’s largest cryptocurrency exchange, Upbit, reported a major hacking incident on November 27 in which approximately KRW 44.5 billion (USD 33 million) worth of digital assets were transferred to an unknown external wallet. The exchange came under scrutiny after disclosing the breach 7 hours and 51 minutes after detection, prompting speculation that the timing was influenced by the merger announcement involving its parent company Dunamu and Naver Financial.

According to Dunamu, Upbit detected unauthorized transfers at 4:42 a.m. on Wednesday. The stolen assets were linked to the Solana network, including Solana (SOL), Double Zero (2Z), Access Protocol (ACS) and 24 different tokens.

Immediately after identifying the breach, Upbit notified the Financial Supervisory Service (FSS) and the Korea Internet & Security Agency (KISA). At 5:27 a.m., the exchange suspended deposits and withdrawals for Solana-based assets, and by 8:55 a.m., halted all digital asset transactions—without providing a reason at the time. Upbit publicly confirmed the incident only at 12:33 p.m., nearly eight hours after detection, and after Dunamu and Naver Financial had completed a joint press conference regarding their merger.

This delay has sparked criticism that Upbit prioritized its corporate event over investor protection. Even Naver, a key counterparty in the stock-swap transaction, was reportedly not informed of the breach during the merger event.

Upbit initially stated that the loss amounted to KRW 54 billion, but later revised the figure to KRW 44.5 billion, adding further confusion among users. The exchange has not yet provided details on the cause of the breach, the number of affected customers, or the security status of non-Solana assets.

Upbit stated that all customer losses will be fully covered using company funds and that the exchange is tracing the destination wallet, encouraging users to submit relevant information.

This incident comes exactly six years after Upbit suffered another major breach on November 27, 2019, when hackers stole 342,000 ETH—valued at KRW 580 billion at the time, and over KRW 1.5 trillion at current prices. In that event as well, Upbit delayed public disclosure by several hours.

Alphabiz Reporter Kim Jisun(stockmk2020@alphabiz.co.kr)