Skip to content
Crime-and-justiceTokenCrypto exchangetechnologyInvestingHackersFinancegeneral-newsLinkPhemexLazarusBybitCryptoBlockchainCybersecurity

Hackers associated with the Lazarus Group believed to be behind $1.4B bybit heist and $29M Phemex data breach

Cybercriminal organization Lazarus Group implicated in a series of significant crypto heists, including the $1.4B Bybit hack and $29M Phemex breach, contributing to an unprecedented surge in digital currency thefts in the year 2024. #CryptoSecurity #LazarusGroupUncovered

 and  Administrator
3 min read

Hackers associated with the Lazarus Group believed to be behind $1.4B bybit heist and $29M Phemex data breach

Freshened Up Article:

Enjoy a light-hearted, easy-to-digest take on the latest crypto chaos!

Bybit and Phemex hacks? Blame it on North Korea's Lazarus Group, the sly cats behind the spoils! You might've heard about the monumental Bybit hack on February 21 that slashed $1.4 billion from the crypto market. These sneaky cyber crooks primarily nabbed staked Ether and ERC-20 tokens. Expert peeps from Arkham Intelligence and ZachXBT caught wind of Lazarus-linked wallets involved in the crime.

But wait, there's more! Investigators have uncovered that the same hoodlums infiltrated Phemex in January, causing a $29 million dent. Traced funds from both sneaky heists were laundered through Tornado Cash, strengthening the connection. This style suggests Lazarus Group is upping their cyber-thieving game.

Master Thieves on the Loose

Data proves these cunning tricksters drained Phemex's hot wallets in 125 transactions, jumping between 11 blockchain networks to dodge detection. Once the ill-gotten gains were converted into Ether using Tornado Cash, the crooks were gone like a cheetah in the wild grass.

Bybit's breach was more complex and spine-tingling. The cunning crooks tricked exchange signers into corroborating a smart contract change, gaining control over Bybit's Ethereum multisig cold wallet. Security wizards think these wicked tricksters used crafty transactions to manipulate the system, much like the $230 million WazirX heist. This resemblance hints that Lazarus Group is perfecting their dirty deeds. The Bybit smash-and-grab alone accounted for more than half of all crypto thefts in 2024.

Cyber-Mayhem from North Korea

Lazarus Group boasts a ruthless record of targeting cryptocurrency platforms. In 2024 alone, North Korean hackers swiped over $1.34 billion in digital assets, which is 102% higher than the $660 million stolen in 2023. This upsurge has sparked concern among nations worldwide. The United States, Japan, and South Korea issued a joint warning, suspecting that these crypto funds keep North Korea's nuclear weapons program running.

South Korea took action, sanctioning 15 North Koreans for supporting hacking operations. Experts urge crypto exchanges to beef up their security systems to protect against future attacks, as the danger remains sky-high without better defenses.

Not gonna lie, the methods used by Lazarus Group to pull off the Bybit and Phemex heists aren't disclosed. But we do know their general tactics:

  • Sophisticated Malware: Lazarus Group deploys advanced malware to infiltrate systems, often targeting financial institutions, cryptocurrency exchanges, and government agencies.
  • Exploiting Vulnerabilities: They exploit vulnerabilities in software and hardware to gain unauthorized access.
  • Social Engineering: These cyber-sneaks use social engineering tactics like phishing, tricking employees or users into revealing sensitive data.
  • Watering Hole Attacks: Lazarus Group lurks on popular websites frequented by intended victims, infecting them with malware to compromise their devices.

Once inside a system, the Lazarus Group can use their superior tools to evade security measures and make off with the loot. So, expect tighter security measures in the crypto world to catch these masterful digital pickpockets!

  1. The Bybit and Phemex hacks, respectively occurring on February 21 and in January, have been attributed to the Lazarus Group, a cybersecurity threat linked to North Korea.
  2. In the Bybit hack, the criminals primarily targeted staked Ether and ERC-20 tokens, draining the platform's cold wallet through a crafty manipulation of the system's smart contract.
  3. Phemex's hot wallet was infiltrated by the Lazarus Group in 125 transactions, with the funds then laundered through Tornado Cash and dispersed across 11 blockchain networks.
  4. In 2024 alone, North Korean hackers, operating under the Lazarus Group, managed to steal over $1.34 billion in digital assets, marking a 102% increase compared to the $660 million stolen in 2023.
  5. Authorities worldwide have expressed concern over the rise in crypto thefts, suspecting that these funds are being used to sustain North Korea's nuclear weapons program.
  6. To combat future attacks, cybersecurity experts advise crypto exchanges to improve their security protocols and implement measures to protect against sophisticated malware, exploited vulnerabilities, social engineering, and watering hole attacks.
  7. Overall, the cybersecurity landscape in the general-news and crime-and-justice sectors remains a significant concern as hacking groups like the Lazarus Group continue to push the boundaries of technology for financial gain.
Cybercriminal gang Lazarus Group implicated in $1.4B heist from Bybit and $29M breach at Phemex. alarming surge in cryptocurrency thefts reached historic levels in the year 2024. #DigitalTheft #LazarusGroup

Read also:

    Related

    Latest