Save And Increase › Investing › Crypto Exchange WOO X Loses $14M After Team Member Falls for Phishing Attack

Investing 25-07-2025 14:03 7 Views

Crypto Exchange WOO X Loses $14M After Team Member Falls for Phishing Attack

Cryptocurrency exchange WOO X suffered a $14 million security breach on July 24, 2025, after a team member’s device was compromised in a targeted phishing attack that allowed unauthorized access to nine user accounts and the platform’s development environment.

The exploiter coordinated a series of unauthorized withdrawals from affected user accounts between 13:50 UTC +8 and 15:40 UTC +8, when the attack was discovered and halted.

We're currently investigating a contained incident that occurred on WOO X earlier today

While user funds and trading are unaffected, withdrawals have been temporarily paused while we complete the investigation.

Stay tuned to this account for updates: https://t.co/qWc9cDhn2z

— WOO X (@_WOO_X) July 24, 2025

Exchange Promises Full Compensation as Security Breaches Multiply

WOO X temporarily suspended all withdrawals as a precautionary measure while conducting a complete forensic review of the incident.

The exchange confirmed it will fully cover all unauthorized withdrawals from the affected accounts and has already contacted the nine impacted users.

While user funds and trading remained unaffected during the breach, the platform prioritized reopening withdrawals for all users after completing the security investigation.

The WOO X incident adds to a devastating year for crypto security, with Web3 projects losing $3.1 billion to exploits and scams in the first half of 2025, according to Hacken’s security report.

The amount already exceeds total losses recorded across all of 2024, with phishing and social engineering attacks accounting for $600 million of the damage.

Despite multiple security measures limiting the exploiter’s access, the attack provided sufficient time to coordinate the withdrawal series before it was detected.

Phishing Attacks Reach Record Levels as Crypto Losses Mount

CertiK reported crypto investors lost more than $2.2 billion to hacks, scams, and security breaches in the first half of 2025 across 344 incidents.

Wallet-related breaches alone accounted for $1.7 billion across just 34 attacks, while phishing followed with over $410 million stolen in 132 incidents.

The largest hack occurred in February when crypto exchange Bybit suffered a breach resulting in theft of more than $1.5 billion in liquid-staked ETH and MegaETH.

Cetus Protocol on the Sui blockchain lost about $225 million in May due to a smart contract flaw involving spoof tokens and price manipulation.

Ethereum remained the most targeted blockchain, experiencing 175 security events and over $1.6 billion in losses.

Source: Certik

The average amount lost per incident reached $7.1 million, while the median loss was approximately $90,000.

AI-related exploits surged by 1,025% compared to the second half of 2024, stemming from insecure API design, improper model access restrictions, and weak user input filtering.

Access control exploits contributed $1.83 billion to total losses, with the majority of these losses occurring in the first quarter of the year.

Source: Hacken

Smart contract vulnerabilities cost $229 million in May 2025 alone, jumping from just $5 million in April.

DeFi protocols comprised nearly 69% of all tracked incidents, while CeFi incidents were fewer but resulted in higher individual losses.

Physical Violence Against Crypto Holders Escalates Globally

Physical attacks against cryptocurrency holders reached alarming levels in 2025, with at least 32 “wrench attacks” reported globally, according to Bitcoin security advocate Jameson Lopp.

The year is on pace to surpass 2021’s record of 36 physical attacks targeting crypto owners.

Nearly one-third of these violent incidents occurred in France, where attacks have grown increasingly brutal.

Ledger co-founder David Balland was kidnapped and mutilated in January during a failed ransom attempt, while another case involved captors severing a victim’s father’s finger and demanding €7 million.

David Balland, co-founder of French cryptocurrency hardware wallet manufacturer @Ledger was kidnapped alongside his wife in a shocking incident that left him with severe injuries to one of his hands.#Ledger #CryptoCrime https://t.co/IvCjWeovS6

— Cryptonews.com (@cryptonews) January 24, 2025

Criminals have begun targeting family members of crypto holders. Pierre Noizat, CEO of Paymium, narrowly avoided tragedy when attackers attempted to kidnap his daughter and grandson in May.

Paris authorities arrested 25 suspects in a kidnapping ring that same month.

Physical attacks have spread beyond France, including a Las Vegas kidnapping where the victim was driven into the Arizona desert.

In April, a Bitcoin whale fell victim to a phishing scam, resulting in a $330 million loss, as attackers used multiple instant exchanges before converting the funds to the privacy coin Monero.

The escalation has prompted increased demand for private protection services as crypto-related violence enters what experts describe as a “darker, more personal phase” targeting not just holders but their families.

The post Crypto Exchange WOO X Loses $14M After Team Member Falls for Phishing Attack appeared first on Cryptonews.

Other news

26-07-2025 00:03

Crypto Price Prediction Today 25 July – XRP, Pepe, Shiba Inu

26-07-2025 00:03

Perplexity AI Predicts the Price of XRP, Dogecoin and Cardano by the End of 2025

Enter Your Information Below To Receive Latest News, And Articles.

Your information is secure and your privacy is protected. By opting in you agree to receive emails from us. Remember that you can opt-out any time, we hate spam too!