Unauthorized Transfer to Unknown Wallet, Exness Liability Evasion Spurs New Dispute

Exness, a well-known forex broker, is once again facing serious questions over the integrity of its security system. BrokersView recently noted a case in which a client claimed that $64,500 was withdrawn from their account without authorization and transferred to an unfamiliar wallet address. Despite the significant loss, Exness refused to accept responsibility, citing "successful login" as justification and shifting the risk entirely onto the client—an attitude that has triggered widespread concern over the broker's asset-protection mechanisms.

An Unauthorized but "Valid" Withdrawal

According to the complainant, the $64,500 in their Exness account was stolen and transferred to a non-authorized wallet without any OTP (one-time password) or other confirmation. They also reported that all active positions in the account were automatically closed during the incident.

The core point of dispute goes straight to Exness' security defenses: how could a large withdrawal bypass essential verification steps—such as OTP—and be sent to a third-party address that had never been approved?

Shifting Responsibility Under the Name of "Policy"

When questioned about the missing OTP and the transfer to an unknown wallet, Exness' initial stance was a firm refusal to compensate the client.

According to email responses published by the complainant, the company insisted:

"Following an in-depth investigation, including the analysis of journals and log history from all your trading accounts and Personal Area, we would like to reaffirm that our decision regarding this request remains unchanged. The withdrawal was executed after successful login with valid credentials in your Personal area."

This one-size-fits-all explanation exposes two critical weaknesses in Exness' handling of client asset protection:

Insufficient security safeguards.

For large withdrawals directed to a completely new and unlinked address, reputable financial institutions typically require enhanced verification measures (such as video verification or a 24-hour cooling-off period) to confirm that the action was performed by the account owner. Relying solely on "successful login" does not rule out potential vulnerabilities in Exness' OTP system or its risk-control mechanisms.

Evasive accountability.

By placing full blame on the client for a presumed credential leak, the platform overlooks its obligation—as the custodian of client funds—to perform final and adequate security checks. Community analysis suggests that if a platform cannot effectively safeguard high-value accounts, this reflects a systemic failure.

BrokersView has previously reported on Exness experiencing platform freezes during periods of high volatility, which led to forced liquidations and substantial client losses, as well as issues related to delayed withdrawals and technical maintenance disruptions.

This latest case, however, directly exposes a major security risk within the most fundamental layer of client-fund protection. The problem has expanded from trade-execution reliability to the very foundation of asset custody.

BrokersView Reminds You

When choosing a broker, place greater weight on its track record of fund protection and its attitude toward resolving complaints—rather than spreads or leverage.

If you have encountered a similar issue, you are welcome to submit your complaint to BrokersView.