Sumit Gupta and Neeraj Khandelwal, the co-founders of major Indian exchange CoinDCX, have been caught in the crosshairs of local law enforcement following a fraud complaint. While initial reports suggested an arrest, the firm maintains that the founders are cooperating with authorities to address a sophisticated impersonation scheme that has allegedly siphoned funds from unsuspecting users via fraudulent domains.
Why are the CoinDCX founders being questioned?
The investigation stems from a First Information Report (FIR) filed by an insurance consultant who claims to have lost approximately 71 lakh Indian rupees (roughly $75,000) after interacting with a website masquerading as the legitimate CoinDCX platform. The plaintiff alleged criminal breach of trust, prompting the Thane Police to summon the founders for questioning.
CoinDCX has publicly refuted these claims, labeling the FIR a "conspiracy" orchestrated by bad actors. According to the exchange, these impersonators are funneling capital into third-party accounts that have zero operational connection to the real platform. This isn't an isolated incident; the firm reported that between April 2024 and January 2026, it identified over 1,212 websites actively spoofing the official coindcx.com domain.
Is this part of a wider trend in Indian crypto security?
The surge in phishing attacks targeting Indian investors is reaching critical levels. Data from the Ministry of Home Affairs suggests that investment scams now account for a staggering 76% of all financial losses in the region for 2025. This environment of heightened risk mirrors the volatility seen in other sectors, such as the recent collapse of the HAWK memecoin, which also left retail investors searching for accountability amidst regulatory scrutiny.
For those tracking the broader health of the ecosystem, it is worth noting that while Bitcoin remains the ultimate destination for crypto capital cycles, localized exchange security remains a primary bottleneck for mass adoption.
| Metric | Data Point |
|---|---|
| Reported Fake Domains | 1,212+ |
| Loss in Current Case | $75,000 (71 Lakh INR) |
| CoinDCX Valuation | $2.45 Billion |
| 2025 Global Web3 Losses | $3.95 Billion |
What is the history of CoinDCX security?
This is not the first time the exchange has faced public pressure regarding its operational integrity. In July 2025, the platform suffered a security breach where attackers siphoned roughly $44 million from an internal operational account. While the company asserted at the time that customer assets remained insulated from the hack, the incident naturally invited increased regulatory oversight. For context on broader market volatility, you can track live price action on CoinMarketCap.
As reported by Cointelegraph, the company is now doubling down on user education to combat the sophisticated social engineering tactics currently plaguing the Indian market.
FAQ
1. Were the CoinDCX founders arrested? While early reports suggested an arrest, the company and other local media outlets clarify that the founders were summoned for questioning by the Thane Police regarding a specific fraud complaint.
2. How did the $75,000 loss occur? An investor was lured to a third-party website that perfectly mimicked the CoinDCX interface, leading them to deposit funds into accounts controlled by scammers rather than the exchange itself.
3. Is CoinDCX still backed by Coinbase? Yes, CoinDCX maintains its backing from Coinbase Ventures, which helped propel the exchange to a valuation of approximately $2.45 billion in 2025.
Market Signal
Investors should treat this as a reminder to verify domain URLs and avoid interacting with platforms via unverified social media links. While the exchange denies direct culpability, the ongoing scrutiny highlights the need for better on-chain security protocols as Web3 losses continue to trend toward the $4B mark annually.