Iran Limits Crypto Trading Hours After Pro Israel Hackers Hit Top Domestic Exchange

Crypto Reporter

Shalini Nagarajan

Crypto Reporter

Shalini Nagarajan

About Author

Shalini is a crypto reporter who provides in-depth reports on daily developments and regulatory shifts in the cryptocurrency sector.

Share

Last updated: 

June 19, 2025

Why Trust Cryptonews

Cryptonews has covered the cryptocurrency industry topics since 2017, aiming to provide informative insights to our readers. Our journalists and analysts have extensive experience in market analysis and blockchain technologies. We strive to maintain high editorial standards, focusing on factual accuracy and balanced reporting across all areas – from cryptocurrencies and blockchain projects to industry events, products, and technological developments. Our ongoing presence in the industry reflects our commitment to delivering relevant information in the evolving world of digital assets. Read more about Cryptonews

Iran’s central bank has reportedly ordered all domestic crypto exchanges to restrict their operating hours, following a cyberattack that drained over $90m from the country’s largest crypto trading platform.

The new rule, which limits trading to between 10am and 8pm, appears to be a direct response to the hack on Nobitex, the Tehran-based exchange that processes the bulk of Iran’s crypto transactions.

This move is aimed at tightening oversight and reducing the likelihood of future incidents, especially during off-hours when cybersecurity response times are slower.

The pro-Israel hacking group Gonjeshke Darande, or Predatory Sparrow, claimed responsibility for the breach.

In an X post, the group said it had infiltrated Nobitex’s infrastructure and promised to release its source code and internal data. A day earlier, the same group said it had targeted state-owned Bank Sepah.

Experts See Political Message in Nobitex Hack

Cybersecurity firms say the stolen funds were not moved for profit. Instead, the attackers “burned” the crypto by sending it to wallet addresses with no known private keys, effectively destroying the assets.

Several of those wallet addresses included slurs against Iran’s Revolutionary Guard Corps. Analysts say this suggests the hack was politically motivated, not financially.

Blockchain analytics firm Elliptic confirmed that more than $90m had been siphoned from Nobitex and traced to these burner wallets. Chainalysis added that the incident fits a pattern of cyberattacks coinciding with spikes in tensions between Israel and Iran.

Hack Spurs Iran to Clamp Down on Crypto Sector Key to Bypassing Sanctions

Predatory Sparrow has launched similar cyber operations against Iranian infrastructure in the past. Israeli media widely believe the group is linked to Israel’s military or intelligence agencies. However, there has been no official confirmation of its affiliations.

The fallout from the hack has cast a spotlight on Iran’s dependence on crypto as a tool to skirt international sanctions.

Exchanges like Nobitex let users trade outside the global banking system. As a result, they have become essential for countries facing sanctions. However, this also makes them highly vulnerable in today’s tense geopolitical climate.

By limiting crypto trading to daytime hours, Iranian authorities aim to tighten control over the sector. This sector has become increasingly vital to the country’s financial survival. However, the curfew is unlikely to fully prevent future cyberattacks. Still, it signals a growing sense of urgency as Tehran scrambles to protect its fragile digital economy.