Based on materials from the site - By FinanceFeeds
Tehran-based cryptocurrency exchange Nobitex has begun to restore limited services after a $90 million hack earlier this month, for which the pro-Israel hacker group Gonjeshke Darande claimed responsibility.
In a message on X, Nobitex stated that access to the wallet is now open for users who have undergone identity verification, with priority given to spot trading users. The exchange plans to resume withdrawals on June 30, while other functions, such as deposits and trading, will gradually return—though no exact timelines were provided.
The company also warned users not to send funds to previously used wallet addresses, citing a complete migration of its wallet system. "Previous addresses are no longer valid, and any deposits made to them may result in loss of funds," Nobitex stated.
The hack, which occurred on June 18, was widely regarded as politically motivated, given the group's public ties to Israel and Nobitex's status as Iran's largest crypto platform. Gonjeshke Darande took responsibility, burned a large portion of the stolen funds, and published what appeared to be the exchange's source code.
The attack drew increased attention to the geopolitical aspects of crypto infrastructure in the region. Blockchain analytics firm Chainalysis reported that Nobitex processed over $11 billion in cryptocurrency—far more than other local exchanges—and has apparent ties to entities under international sanctions, including Iran's Islamic Revolutionary Guard Corps and Russian crypto platforms.
Blockchain analytics firm TRM Labs also stated that there is an 'analytical possibility' that Israeli cyber groups gained access to Nobitex's internal information shortly after the June 18 hack. TRM noted that timing was critical: just a few days later, Israeli authorities announced the arrest of three individuals accused of espionage on behalf of Iran.
Two suspects reportedly received payment in cryptocurrency. One of them, 28-year-old Dmitry Cohen, allegedly received $500 in cryptocurrency for completing a task that involved gathering intelligence and online propaganda.
Hackers known by their name in Farsi, which translates to 'Predatory Sparrow,' claimed responsibility for the hack on Wednesday and continued on Thursday to publish what they said was the core backend code of Nobitex—scripts, infrastructure data, and privacy configuration.
Nobitex CEO Amir Rad rejected claims that the company is state-linked, calling it a private organization. He also stated that the attack was supported by the Israeli government.
Meanwhile, Iranian regulators have implemented stricter controls over cryptocurrency platforms following the incident, limiting their operating hours from 10 AM to 8 PM.
The Nobitex case is part of a broader rise in politically motivated cyberattacks targeting the cryptocurrency sector in 2025. In particular, North Korean hacker groups accounted for a large share of global cryptocurrency thefts this year, including a $1.5 billion exploit of Bybit in February. South Korean officials say that some of these groups have begun using AI tools, such as ChatGPT, to assist in their operations.
With us (in this group!), those (subscribers!) who are in search of fresh and relevant news usually stay, as they do not want to browse through dozens of different websites and news outlets, but can afford to read all the most interesting news in one news feed!!! 😉
Enjoy your viewing!!! 😊
