A cryptocurrency exchange that only launched in the last few months says it has been hit by a hack that it can’t afford to cover.

Altsbit – a platform reported to be based in Italy, though it doesn’t make this clear on its website or social media – announced the breach last Thursday, stating on Twitter: “Unfortunately we have to notify you with the fact that our exchange was hacked during the night and almost all funds from BTC, ETH, ARRR and VRSC were stolen. A small part of the funds are safe on cold wallets.”

An update on the company’s website now indicates that “fortunately a good part of the coins were kept on cold storage” and that it will issue partial refunds, not having the wherewithal to fully compensate users.

The cryptocurrencies taken in the hack are now listed as:

Bitcoin (BTC): 6,929 lost out of 14,782 held

Ether (ETH): 23,210 lost out of 32,262

Pirate Chain (ARRR): 3,924,082 lost out of 9,619,754

Verus Coin (VRSC): 414,154 lost out of 852,726

Komodo (KMD): 1,066 lost out of 48,015

The site said users who saw losses must apply for their partial refunds. The bitcoin and ether stolen were valued at around $72.5 million at press time.

Customers of the exchange will need to get their applications in quickly, with exchange saying: “Refunds will begin on February 10, 2020, and end on May 8, 2020; after this date it will no longer be possible to request a refund as the Altsbit platform will be terminated.”

Black-hat hacking group LulzSec appears to have claimed responsibility for the theft on its Twitter feed, saying: “We assure that @altsbit didn’t had (sic) proper security to stop Lulz Canon. Many others to follow. Better Stack up the Security – Note to other Exchanges.”

The group, a number of whose members have been arrested, has been linked to previous major hacks including one of Sony Pictures in 2011.

Altsbit had only launched as a rebranded service (though it’s not clear what it had rebranded from) in October, offering a “roadmap” that comprised a brief list of objectives with “Adding user security functions” coming in last as item number five.