Cyber Incident Victim: CoinWallet

In early April 2016, CoinWallet suffered a cyber attack linked to a recent service update intended to introduce new features. The update introduced an input field that lacked proper filtering mechanisms, allowing attackers to inject malicious code. This code executed on CoinWallet’s servers, triggering unauthorized database calls that manipulated the service. The breach was detected following abnormal system behavior, though the exact timeline between exploitation and discovery remains unspecified in public reports. CoinWallet confirmed no customer funds were stolen during the incident, attributing this to secondary security controls designed to block unauthorized transactions. The company acknowledged that while user passwords were encrypted and salted, they remained vulnerable to compromise and advised users to change passwords immediately, especially if reused elsewhere. This incident marked the fourth Bitcoin platform shutdown due to cyber attacks within a month, following Coinkite Inc.’s closure after sustained DDoS attacks.

The attack prompted CoinWallet’s owner to announce service termination by May 1, 2016, urging users to withdraw funds before the shutdown. The breach undermined the company’s confidence in its security model, citing unsustainable risks and operational costs. At the time of the incident, CoinWallet supported trading across 82 cryptocurrencies, including Bitcoin, Dogecoin, Cannabiscoin, Solarcoin, and Metalcoin. Its closure coincided with an April 7 attack on ShapeShift, another Bitcoin exchange that halted operations to rebuild its infrastructure. CoinWallet’s shutdown notice included an offer for potential acquisition, though no further details were provided. The incident highlighted recurring security vulnerabilities in cryptocurrency platforms during this period, with multiple services collapsing under attack pressures.