CoinDCX Co‑Founders Questioned Amid Alleged Impersonation Fraud; Exchange Blames Fake Websites
Mumbai, 22 Mar 2026 – Indian cryptocurrency exchange CoinDCX finds itself at the centre of a legal controversy after its co‑founders, Sumit Gupta and Neeraj Khandelwal, were reportedly detained by Thane police on accusations of criminal breach of trust. The incident stems from a First Information Report (FIR) lodged by an insurance consultant who claims to have been duped by a bogus website masquerading as the CoinDCX platform and lost roughly ₹71 lakh (≈ US$75,000) in the process.
Conflicting Reports on the Detention
According to an Economic Times article published on Saturday, the two founders were taken into custody following the police complaint. Other outlets, including Entrackr, have described the event as a summons for questioning rather than a formal arrest. Local officials have not yet released an official statement clarifying the precise legal status of Gupta and Khandelwal.
The Fraud Allegations
The FIR alleges that the victim was directed to invest through a counterfeit site that copied CoinDCX’s branding and user interface. The impersonators allegedly rerouted the funds to accounts unrelated to the exchange, prompting the complainant to seek legal recourse.
CoinDCX responded on its official X (formerly Twitter) account, characterising the FIR as a fabricated claim concocted by individuals impersonating the company’s senior leadership. The exchange asserted that the alleged perpetrators had no affiliation with CoinDCX and that it is fully cooperating with law‑enforcement agencies to resolve the matter.
A Growing Threat Landscape
In a separate communication, CoinDCX highlighted the scale of brand‑related cyber threats it faces. Between 1 April 2024 and 5 January 2026, the firm identified more than 1,200 fraudulent websites that copied its domain name, underscoring a broader trend of phishing and impersonation attacks targeting Indian crypto users.
Data from the Ministry of Home Affairs indicates that investment‑related scams comprised roughly three‑quarters of all financial‑loss incidents recorded in 2025. On a global scale, Web3 platforms suffered close to US$4 billion in hacks and exploits during the same year.
Context: CoinDCX’s Recent History
Founded in 2018 and headquartered in Mumbai, CoinDCX has emerged as one of India’s leading cryptocurrency trading venues. The exchange secured a valuation of about US$2.45 billion after a strategic investment from Coinbase Ventures in October 2025. However, the platform has faced security challenges before; a breach in July 2025 resulted in the theft of approximately US$44 million from an internal operational account, although customer funds were reportedly unaffected.
Analysis
The present case illustrates the precarious intersection of rapid crypto adoption and evolving cyber‑crime techniques in India. Even well‑funded and regulated exchanges such as CoinDCX are vulnerable to brand‑cloning schemes that can erode user trust and attract regulatory scrutiny.
-
Regulatory Implications: Indian authorities have been tightening oversight of digital‑asset platforms. An incident that appears to involve senior executives—whether as suspects or victims—could accelerate calls for stricter compliance requirements, including mandatory KYC/AML protocols and enhanced corporate‑governance standards.
-
Reputational Risk: The exchange’s immediate denial and its public pledge to cooperate with investigators are aimed at containing reputational damage. Still, the mixed media coverage—some outlets reporting arrests while others note only questioning—may create uncertainty among investors and users.
- Operational Takeaways: The sheer number of counterfeit sites flagged by CoinDCX signals that traditional security measures (e.g., two‑factor authentication) must be complemented by proactive brand‑monitoring and user‑education campaigns. Partnerships with cybersecurity firms and the deployment of AI‑driven URL‑verification tools could mitigate future impersonation attempts.
Key Takeaways
- Legal Development: Co‑founders Sumit Gupta and Neeraj Khandelwal have been summoned by police; the exact nature of their detention remains unclear.
- Alleged Scam: A fraudster posing as CoinDCX allegedly siphoned ₹71 lakh from an insurance consultant via a fake investment portal.
- Exchange’s Position: CoinDCX denies any involvement, labels the FIR as a conspiratorial false report, and asserts full cooperation with investigators.
- Scale of Threats: Over 1,200 phishing sites mimicking CoinDCX have been identified in the past 21 months, reflecting a wider surge in crypto‑related impersonation attacks across India.
- Industry Context: Investment scams accounted for 76 % of financial‑loss cases in 2025, and worldwide Web3 platforms lost nearly US$4 billion to hacks and exploits the same year.
- Future Outlook: The incident may prompt tighter regulatory oversight and reinforce the need for robust brand‑protection strategies within the Indian crypto ecosystem.
CoinDCX’s handling of the situation, alongside the outcomes of the police investigation, will likely serve as a bellwether for how Indian cryptocurrency firms navigate legal challenges and cyber‑crime threats in an increasingly scrutinised market.
Source: https://cointelegraph.com/news/coinbase-backed-coindcx-founders-questioned-report?utm_source=rss_feed&utm_medium=feed&utm_campaign=rss_partner_inbound
