Bitcoin Depot, the largest Bitcoin ATM operator in the U.S., has reported a significant security breach resulting in the theft of approximately $3.6 million in bitcoin. The company, listed on NASDAQ under the ticker BTM, revealed these details in a recent SEC filing.
Details of the Security Breach
The breach was detected on March 23, when Bitcoin Depot discovered unauthorized access to its IT systems. The intruder managed to acquire credentials related to digital asset settlement accounts, facilitating the theft of around 50.903 bitcoins from the company’s wallets.
Bitcoin Depot assured that the breach was confined to its corporate environment, without affecting the customer platforms or any other critical systems. The company is conducting a thorough investigation to determine the complete impact of the incident.
Financial Impact and Company Response
Despite the breach, Bitcoin Depot claims that its daily operations remain unaffected. However, the firm acknowledged potential reputational, legal, and regulatory costs as a result of the incident. A preliminary estimate of the financial loss stands at approximately $3.665 million, based on the fair market value of the stolen bitcoins at the time of the theft.
The company also noted that it has insurance policies that might cover some of the losses associated with cybersecurity incidents, though it cannot guarantee full recovery of the stolen assets.
Past Breaches and Industry Challenges
This recent incident is not the first challenge Bitcoin Depot has faced. In July 2025, the company informed over 26,000 individuals about a previous data breach that had occurred a year prior. Hackers had accessed sensitive personal information, including names and driver’s license numbers, due to a delayed disclosure prompted by a law enforcement investigation.
The latest theft highlights the ongoing risks within the cryptocurrency industry, as seen in a recent attack where North Korean hackers reportedly stole $285 million from the DeFi platform Drift. Such incidents underscore the need for robust cybersecurity measures to safeguard digital assets.
As Bitcoin Depot continues its investigation, the industry watches closely to understand the broader implications for cryptocurrency security and trust.
