ETH

North Korean Hackers Suspected in $235M WazirX Crypto Heist

by BSCN

July 18, 2024

chain

The exploit, which targeted WazirX's multisignature wallet, led to the unauthorized transfer of over $235 million in various cryptocurrencies.

Cryptocurrency exchange WazirX is reeling from a staggering $235 million hack, allegedly orchestrated by hackers with ties to North Korea, according to blockchain analytics firm Elliptic. 

Elliptic's analysis has linked the attack to techniques previously associated with the North Korean hacker group Lazarus. The use of TornadoCash, a privacy tool for cryptocurrencies, to obscure transactions mirrors tactics seen in previous Lazarus-led hacks. 

 

Deddy Lavid, CEO of Cyvers Alert, emphasized similarities to Lazarus Group's modus operandi, raising concerns about the group's involvement in the WazirX exploit.

Hack Unfolded With ‘Precision’

The hack unfolded with calculated precision, starting its ominous path at least 8 days before its execution according to Polygon Labs' Chief Information Security Officer, Mudit Gupta. Gupta described the attack as methodical, pointing to the Democratic People's Republic of Korea (DPRK) as the likely culprit. 

 

The hackers reportedly exploited vulnerabilities in WazirX's multi-signature wallet, upgrading it to a malicious version that facilitated the unauthorized transfer of over $235 million in various cryptocurrencies.

 

The aftermath of the attack revealed a vast array of cryptocurrencies stolen, including approximately $96.7 million worth of Shiba Inu (SHIB), $52.6 million in Ethereum (ETH), $11 million in Polygon's MATIC, and $7.6 million in memecoin Pepe. The hacker’s wallet holds $72.4 million in assets at the time of writing. 

Response and Recovery Efforts

In response to the breach, Arkham, a prominent player in the crypto security space, announced a bounty of 5000 ARKM coins. This initiative aims to incentivize efforts to identify the hacker or recover the stolen funds. 

 

ZachXBT, a renowned crypto detective, has already contributed evidence towards identifying the hackers, showcasing the community's solidarity in tackling such incidents.

 

Lazarus Group has gained notoriety for its persistent targeting of the cryptocurrency sector, with Chainalysis estimating its ill-gotten gains to exceed $3 billion over the past five years. 

Disclaimer

Disclaimer: The views expressed in this article do not necessarily represent the views of BSCNews. The information provided in this article is for educational and informational purposes only and should not be construed as investment advice. BSCNews assumes no responsibility for any investment decisions made based on the information provided in this article

;