Summary: Safe{Wallet} disclosed details about a sophisticated cyberattack on Bybit, attributed to state-sponsored North Korean hackers. The attackers employed advanced social engineering techniques to compromise a developer’s machine and hijack AWS session tokens, enabling them to conduct covert operations. The incident highlights serious security vulnerabilities in the cryptocurrency industry, which faces record losses from hacks in 2025.
Affected: Bybit, Safe{Wallet}
Keypoints :
- Attack identified as the work of the TraderTraitor hacking group linked to North Korea.
- Compromise of a developer’s laptop led to bypassing of multi-factor authentication through hijacked AWS tokens.
- 2025 is projected to be a record year for cryptocurrency heists, with Web3 projects losing .6 billion in just two months.
Source: https://thehackernews.com/2025/03/safewallet-confirms-north-korean.html