FBI Hunts North Korea’s Lazarus Group After Bybit Hack

The post FBI Hunts North Korea’s Lazarus Group After Bybit Hack appeared on BitcoinEthereumNews.com.

The FBI is now involved in the manhunt for North Korea’s Lazarus Group, responsible for the $1.5 billion Bybit hack. Hackers exploited a Safe wallet vulnerability and manipulated transactions to steal ETH. Over 100 Ethereum addresses linked to the group are being monitored, with Bybit freezing $40 million of the stolen funds. The FBI has joined the search for North Korea’s Lazarus Group, the cybercriminal organization responsible for the Bybit hack that resulted in the theft of ETH valued at $1.5 billion. The attack is considered one of the largest crypto heists to date. Investigations revealed that hackers compromised a Safe wallet belonging to a Bybit developer and injected malicious code into the exchange’s front end. This allowed them to manipulate transaction parameters and deceive signers into approving unauthorized transfers. Laundering princess is ongoing, with 270,000 ETH worth $605 million laundered through THORChain. Breach Origin and Attack Execution Analysis by Verichains and Sygnia determined that the breach originated from Safe{Wallet}’s AWS infrastructure rather than Bybit’s internal systems. Bybit CEO Ben Zhou disclosed that attackers injected malicious JavaScript into Safe{Wallet}’s AWS S3 bucket on February 19 at 15:29:25 UTC. This unauthorized modification allowed hackers to interfere with Bybit’s transaction approval process. Hackers tricked signers into approving what seemed like a routine cold-to-warm wallet transfer. However, the manipulated code altered wallet ownership during the signature, redirecting funds. Related: Binance’s CZ Criticizes Safe’s Bybit Hack Report as ZenGo Expands TRX Wallet Features Once the ETH was stolen, the funds were distributed across 40+ wallets. They were moved through cross-chain bridges and mixers and processed via THORChain swaps and unregulated exchanges. Bybit managed to freeze $40 million of the stolen funds and is offering a 10% bounty for recovered ETH. However, $120 million has already been laundered, and an exchange called eXch refused to…

Leave a Reply

Your email address will not be published. Required fields are marked *

Filed under: News - @ February 28, 2025 3:27 pm