North Korean Hackers Suspected in $235M WazirX Crypto Heist


North Korean Hackers Suspected in $235M WazirX Crypto Heist

  bsc.news 18 July 2024 13:24, UTC

Cryptocurrency exchange WazirX is reeling from a staggering $235 million hack, allegedly orchestrated by hackers with ties to North Korea, according to blockchain analytics firm Elliptic.

Elliptic’s analysis has linked the attack to techniques previously associated with the North Korean hacker group Lazarus. The use of TornadoCash, a privacy tool for cryptocurrencies, to obscure transactions mirrors tactics seen in previous Lazarus-led hacks.

Deddy Lavid, CEO of Cyvers Alert, emphasized similarities to Lazarus Group’s modus operandi, raising concerns about the group’s involvement in the WazirX exploit.

Hack Unfolded With ‘Precision’

The hack unfolded with calculated precision, starting its ominous path at least 8 days before its execution according to Polygon Labs’ Chief Information Security Officer, Mudit Gupta. Gupta described the attack as methodical, pointing to the Democratic People’s Republic of Korea (DPRK) as the likely culprit.

The hackers reportedly exploited vulnerabilities in WazirX’s multi-signature wallet, upgrading it to a malicious version that facilitated the unauthorized transfer of over $235 million in various cryptocurrencies.

The aftermath of the attack revealed a vast array of cryptocurrencies stolen, including approximately $96.7 million worth of Shiba Inu (SHIB), $52.6 million in Ethereum (ETH), $11 million in Polygon’s MATIC, and $7.6 million in memecoin Pepe. The hacker’s wallet holds $72.4 million in assets at the time of writing.

Response and Recovery Efforts

In response to the breach, Arkham, a prominent player in the crypto security space, announced a bounty of 5000 ARKM coins. This initiative aims to incentivize efforts to identify the hacker or recover the stolen funds.

ZachXBT, a renowned crypto detective, has already contributed evidence towards identifying the hackers, showcasing the community’s solidarity in tackling such incidents.

Lazarus Group has gained notoriety for its persistent targeting of the cryptocurrency sector, with Chainalysis estimating its ill-gotten gains to exceed $3 billion over the past five years.

Leave a Reply

Your email address will not be published. Required fields are marked *

Back To Top