Alphabiz - Major Security Breach at Upbit Results in KRW 44.5 Billion Crypto Theft

속초5.4℃
북춘천0.3℃
철원-0.3℃
동두천0.8℃
파주0.3℃
대관령-1.3℃
춘천1.5℃
백령도5.4℃
북강릉6.6℃
강릉6.5℃
동해7.5℃
서울1.5℃
인천2.0℃
원주2.3℃
울릉도7.1℃
수원2.7℃
영월2.8℃
충주1.5℃
서산5.3℃
울진6.8℃
청주3.6℃
대전4.4℃
추풍령2.5℃
안동3.2℃
상주3.5℃
포항6.6℃
군산5.3℃
대구5.7℃
전주5.4℃
울산6.2℃
창원7.4℃
광주8.2℃
부산7.5℃
통영7.9℃
목포7.5℃
여수7.4℃
흑산도8.7℃
완도9.5℃
고창6.7℃
순천5.7℃
홍성5.4℃
서청주3.0℃
제주10.5℃
고산10.2℃
성산10.0℃
서귀포12.6℃
진주6.3℃
강화1.8℃
양평2.3℃
이천2.8℃
인제1.0℃
홍천0.4℃
태백1.2℃
정선군1.5℃
제천0.6℃
보은2.8℃
천안3.5℃
보령6.1℃
부여5.0℃
금산4.5℃
세종4.3℃
부안5.4℃
임실4.8℃
정읍5.7℃
남원5.3℃
장수3.3℃
고창군5.9℃
영광군6.8℃
김해시7.1℃
순창군5.8℃
북창원7.6℃
양산시8.0℃
보성군8.1℃
강진군8.3℃
장흥7.9℃
해남8.4℃
고흥8.2℃
의령군6.0℃
함양군6.4℃
광양시8.2℃
진도군8.2℃
봉화1.5℃
영주2.6℃
문경2.9℃
청송군2.7℃
영덕5.0℃
의성4.6℃
구미5.6℃
영천6.1℃
경주시6.1℃
거창5.7℃
합천6.5℃
밀양7.7℃
산청6.5℃
거제7.8℃
남해7.5℃
북부산7.8℃

2025.11.28 (금)
모바일버전

Major Security Breach at Upbit Results in KRW 44.5 Billion Crypto Theft: Reporter Kim Jisun / approved : 2025-11-28 03:56:15

Photo courtesy of Upbit

[Alpha Biz= Kim Jisun] South Korea’s largest cryptocurrency exchange, Upbit, reported a major hacking incident on November 27 in which approximately KRW 44.5 billion (USD 33 million) worth of digital assets were transferred to an unknown external wallet. The exchange came under scrutiny after disclosing the breach 7 hours and 51 minutes after detection, prompting speculation that the timing was influenced by the merger announcement involving its parent company Dunamu and Naver Financial.

According to Dunamu, Upbit detected unauthorized transfers at 4:42 a.m. on Wednesday. The stolen assets were linked to the Solana network, including Solana (SOL), Double Zero (2Z), Access Protocol (ACS) and 24 different tokens.

Immediately after identifying the breach, Upbit notified the Financial Supervisory Service (FSS) and the Korea Internet & Security Agency (KISA). At 5:27 a.m., the exchange suspended deposits and withdrawals for Solana-based assets, and by 8:55 a.m., halted all digital asset transactions—without providing a reason at the time. Upbit publicly confirmed the incident only at 12:33 p.m., nearly eight hours after detection, and after Dunamu and Naver Financial had completed a joint press conference regarding their merger.

This delay has sparked criticism that Upbit prioritized its corporate event over investor protection. Even Naver, a key counterparty in the stock-swap transaction, was reportedly not informed of the breach during the merger event.

Upbit initially stated that the loss amounted to KRW 54 billion, but later revised the figure to KRW 44.5 billion, adding further confusion among users. The exchange has not yet provided details on the cause of the breach, the number of affected customers, or the security status of non-Solana assets.

Upbit stated that all customer losses will be fully covered using company funds and that the exchange is tracing the destination wallet, encouraging users to submit relevant information.

This incident comes exactly six years after Upbit suffered another major breach on November 27, 2019, when hackers stole 342,000 ETH—valued at KRW 580 billion at the time, and over KRW 1.5 trillion at current prices. In that event as well, Upbit delayed public disclosure by several hours.

Alphabiz Reporter Kim Jisun(stockmk2020@alphabiz.co.kr)