The popular Turkish cryptocurrency platform BtcTurk has temporarily suspended deposits and withdrawals after cybersecurity specialists from several different companies detected suspicious outflows totaling $49 million.
The company was founded in 2013 in Istanbul and is considered the first Turkish crypto trading platform. BtcTurk gained widespread recognition in 2020 when it became one of the leading sponsors of Turkey’s men’s and women’s national football teams.
On August 14, 2025, BtcTurk representatives confirmed that the exchange had experienced a cyber incident and reported that an investigation was launched after unusual activity was detected in the company’s hot wallets.
According to the official statement, law enforcement authorities have already been notified of the incident, and deposits and withdrawals are expected to resume after the investigation is concluded.
“The overwhelming majority of assets are stored in our secure cold wallets. Thanks to BtcTurk’s robust financial structure, this incident will not affect user assets,” the company said. “Trading operations, as well as deposits and withdrawals of Turkish lira, continue to operate without interruption.”
As reported by blockchain analysts at PeckShield, they believe the exchange may have suffered a leak of the private key to its hot wallets. The researchers also note that by the time the attack was disclosed, the perpetrators behind the breach had already begun swapping the stolen tokens, aiming to complicate analysis of the attack and the tracking of the stolen assets.
As early as last night, about half of the stolen funds were converted into Ethereum, and analysts believe it will be difficult for BtcTurk to recover the stolen funds.
It’s worth noting that this was not the first hacker attack on BtcTurk. In 2024, the exchange reported an “unauthorized withdrawal of funds” from several hot wallets, which ultimately resulted in $55 million in losses.
2025.01.27 — YouTube plays hour-long ads to users with ad blockers
Users complain that YouTube plays very long unskippable ads. Sometimes such ads are longer than the video the person is watching. The issue was raised…
Full article →
2025.03.07 — YouTube warns of scam video featuring its CEO
According to YouTube, scammers use an AI-generated video of the company's CEO in phishing attacks to steal user credentials. The scammers attack content creators by sending them…
Full article →
2025.02.05 — Google patches Android zero-day vulnerability exploited by hackers
Google released the February set of patches for Android. In total, they fix 48 bugs, including a kernel zero-day vulnerability actively exploited by hackers. The zero-day's…
Full article →
2025.02.21 — Microsoft fixes vulnerability in Power Pages exploited by cybercriminals
Microsoft patched a severe privilege escalation vulnerability in Power Pages used by hackers as a 0-day. The vulnerability tracked as CVE-2025-24989 (CVSS score 8.2) pertains…
Full article →
2025.03.28 — Zero-day vulnerability in Windows results in NTLM hash leaks
Security experts reported a new zero-day vulnerability in Windows that enables remote attackers to steal NTLM credentials by tricking victims into viewing malicious files in Windows…
Full article →
2025.01.24 — Hundreds of websites impersonating Reddit and WeTransfer spread Lumma Stealer
Sekoia researcher crep1x discovered that hackers are currently using some 1,000 pages impersonating Reddit and WeTransfer. Victims visiting these sites are tricked into…
Full article →
2025.02.10 — Failed attempt to block phishing link results in massive Cloudflare outage
According to the incident report released by Cloudflare, an attempt to block a phishing URL on the R2 platform accidentally caused a massive outage; as a result, many Cloudflare…
Full article →
2025.03.20 — 8,000 vulnerabilities identified in WordPress ecosystem in 2024
According to Patchstack, world's #1 WordPress vulnerability intelligence provider, 7,966 new vulnerabilities were identified in the WordPress ecosystem in 2024; most of these bugs affected plugins…
Full article →
2025.02.28 — Qualcomm extends support for Android devices to 8 years
Qualcomm Technologies announced its collaboration with Google with the purpose to provide extended support for OEM devices running on company's flagship chipsets. This partnership will…
Full article →
2025.04.10 — April updates released by Microsoft cause issues with Windows Hello
Microsoft warns that some Windows users who have installed the April updates might be unable to login to their Windows services using Windows Hello facial recognition…
Full article →