CoinStats Hack June 2024 | Lazarus Group Attack — What Happened & Who Was Affected

About

CoinStats Hack 2024

In June 2024, CoinStats experienced one of the most significant security incidents in the crypto app space — a targeted attack by the Lazarus Group, the North Korean state-sponsored hacking collective responsible for some of the largest crypto thefts in history. The attack specifically targeted CoinStats's in-app wallet feature, which allowed users to deposit and hold cryptocurrency within the CoinStats platform. Funds held in this feature were drained by the attackers.

What was NOT affected: the portfolio tracker core product, which connects to external exchanges via read-only API keys and monitors external wallet addresses. No exchange account funds were accessed. No API keys were compromised. CoinStats published a detailed incident report within 10 days and completed a system rebuild within 11 days — a response that was widely praised for its transparency.

1.2M+

Monthly Active Users

300+

Exchange & Wallet Integrations

100+

Supported Blockchains

20,000+

Cryptocurrencies Tracked

1,000+

DeFi Protocols

2017

Founded · Yerevan, Armenia

Features

Everything in One App

Track, swap, earn, and stay informed — CoinStats goes beyond portfolio tracking to a full crypto management hub.

❌

In-App Wallet: Affected

Funds deposited into CoinStats\'s optional built-in wallet were stolen.

✅

Portfolio Tracker: Safe

Read-only API connections to external exchanges were completely unaffected.

✅

Exchange Accounts: Safe

No user exchange accounts (Coinbase, Binance, etc.) were accessed.

✅

API Keys: Not Compromised

Read-only API keys stored by CoinStats were not compromised in the attack.

📋

Incident Report Published

CoinStats published a detailed post-mortem within 10 days of the incident.

🔧

11-Day Rebuild

Complete system rebuild and security reinforcement completed within 11 days.

Pricing

Free to Start — Upgrade When Ready

CoinStats is free for basic portfolio tracking. Premium starts at $3.99/month for serious investors.

Free

$0/mo

Forever free — no card needed

10 portfolios

1,000 transactions

Price alerts

News feed

Start Tracking in Minutes

Connect your exchanges and wallets — CoinStats does the rest automatically.

1

Understand the Scope

The Lazarus Group attack targeted the in-app custodial wallet — not the portfolio tracker. If you never deposited crypto into CoinStats\'s built-in wallet, you were not affected.

2

Read the Incident Report

CoinStats published a detailed post-mortem publicly. Reading it provides transparency on exactly what happened and what measures were taken.

3

Check Your Exposure

If you used the CoinStats in-app wallet feature to hold funds during June 2024, you may have been affected. Contact CoinStats support to assess your specific situation.

4

Review API Key Permissions

Ensure any API keys you gave CoinStats are still read-only only. As a precaution, you can revoke and recreate them.

5

Ongoing Use Decision

For portfolio tracking only (read-only APIs, public wallet addresses): the risk profile is similar to other tracker apps. For in-app wallet use: consider established self-custody alternatives.

All Your Crypto, One Dashboard

1.2M+ users track their crypto with CoinStats. 300+ integrations, 100+ blockchains, live P&L, and in-app swapping.

Get CoinStats Free →

FAQ

Questions About CoinStats Hack 2024

What exactly was stolen in the CoinStats 2024 hack?

+

Cryptocurrency that users had deposited into CoinStats\'s optional in-app wallet feature. The Lazarus Group compromised this custodial component of CoinStats. The exact amount stolen has not been publicly disclosed in full detail.

Who was the Lazarus Group?

+

The Lazarus Group is a North Korean state-sponsored hacking collective believed to be affiliated with North Korea\'s intelligence services. They are responsible for some of the largest crypto heists in history and have targeted many crypto projects and exchanges.

Did CoinStats compensate affected users?

+

CoinStats\'s response to compensation was addressed in the incident report. For specific claims, affected users should contact CoinStats support directly.

Is CoinStats still operating after the hack?

+

Yes. CoinStats rebuilt its systems within 11 days of the June 2024 hack and continued operating. The platform has continued to serve its 1.2M+ monthly active users and has added new features since the incident.

Should I still use CoinStats after the 2024 hack?

+

For portfolio tracking only (read-only API connections) — yes, the risk profile is sound. The affected component was the in-app custodial wallet, not the tracking functionality. Avoid using the in-app wallet feature and practice standard API key security hygiene.

Reviews

What Users Say

Former In-App Wallet User

★★★☆☆

"Had funds in the CoinStats wallet during the June 2024 incident. The experience was stressful. CoinStats\'s communication was better than expected given the situation. Now using CoinStats for tracking only with read-only APIs."

Security Community Member

★★★★☆

"The Lazarus Group targeting CoinStats is not a reflection of the company\'s security inadequacy alone — this group has successfully compromised much larger targets. The published incident report meets a high standard of transparency for the industry."

Portfolio Tracker User

★★★★★

"Never used the in-app wallet — was entirely unaffected. The tracking product continued working through the entire incident. If you only use CoinStats for read-only tracking, the 2024 hack had zero impact."

Track Every Coin, Every Chain

300+ exchanges, 100+ blockchains, 20,000+ coins — free to start, upgrade anytime.

Start Free →

CoinStats Hack 2024 — Full Incident Report