Summary: Forensic investigations revealed that North Korean Lazarus hackers stole .5 billion from Bybit by exploiting vulnerabilities in the Safe{Wallet} multisig wallet platform. The attack involved injecting malicious JavaScript into the platform, targeting Bybitโs Ethereum cold wallet during a routine transaction. Following the heist, Safe{Wallet} has reconfigured its infrastructure and implemented enhanced security measures to prevent future breaches.
Affected: Bybit, Safe{Wallet}
Keypoints :
- North Korean Lazarus hackers executed a sophisticated attack to siphon over .5 billion from Bybit.
- Investigation concluded that a compromised Safe{Wallet} developer machine facilitated the attack.
- Safe{Wallet} has restored services and increased security measures following the breach.
- Previously stolen funds are linked to other North Korean thefts, highlighting the groupโs ongoing cybercriminal activities.
Views: 4