1. BITBILIHome
  2. Article

North Korean Hackers, Lazarus group, tied to the Atomic Wallet breach

63 views

TL;DR Breakdown

  • Elliptic Firm and its Investigative arm say that users of Atomic Wallet have fallen victim to Lazarus, the notorious North Korean cybercrime group. 
  • So far, $35 million has been stolen in bitcoin, ether, tether, Dogecoin, Litecoin, BNB coin, polygon, and Tron-based USDT.
  • The stolen assets are being laundered using specific services, such as the Sinbad mixer, which has also been used to launder the proceeds of Lazarus Group Hacks in the past.

Elliptic, a blockchain intelligence firm, said in a blog post on Tuesday that users of Atomic Wallet may have fallen victim to Lazarus, the notorious North Korean cybercrime group. Reportedly, illegal funds from the $35 million Atomic Wallet hack have been transferred to a crypto aggregator that is favored by North Korea’s most notorious cyber-hacking group.

The Lazarus Group financial terror hits the crypto industry hard

Lazarus Group is a North Korean cybercrime organization known for its cyber exploits, and it has been blamed for a number of attacks since 2010. The entity is thought to be funded by the North Korean government and consists of an unknown number of hackers. It has launched an increasing number of attacks through its various subgroups, including StoneFly, AndAriel, and BlueNoroff.

Since 2017, when it attacked South Korean crypto investors with Bitcoin and Monero holdings, the criminal group has terrorized the crypto community by using autonomous means of distributing new sorts of computer viruses that expose flaws in well-known software systems. Previously, Lazarus Group was notorious for conducting cyber espionage campaigns against South Korean government entities through distributed denial-of-service assaults.

Lazarus Group has also used the SWIFT network to undertake assaults on global organizations such as Sony and banking institutions, as well as a large-scale ransomware attack that affected thousands of machines in countries such as Russia, India, Taiwan, and Ukraine. During the COVID-19 pandemic in late 2020, the criminal group used spear-phishing techniques to get into computers and stole proprietary COVID-19 research.

The group began 2022 with a $600 million heist on Ronin, the blockchain protocol associated with the renowned crypto game Axie Infinity. Lazarus Group has been linked to a new type of crypto hacking, promoting fake crypto applications under the brand BloxHolder to spread the AppleJeus malware and steal crypto funds. The group is responsible for more than 25 notable attacks. 

Atomic Wallet suffers loss under cyber criminals

The team behind Atomic Wallet, a non-custodial crypto wallet, announced early Saturday morning that some users had their wallets compromised and funds stolen. The number of incidents reportedly did not exceed 1% of “monthly active users.” The announcement followed many complaints on Reddit from users whose wallets had been emptied.

ZachXBT, a pseudonymous blockchain detective, estimated that approximately $35 million worth of crypto had been stolen, including bitcoin, ether, tether, dogecoin, Litecoin, BNB coin, polygon, and Tron-based USDT.

Elliptic wrote that the stolen crypto was transferred to a mixer called Sindbad.io. This mixer, which Elliptic believes is a successor to the previously sanctioned mixer Blender.io, has frequently been used to launder money from other hacks attributed to Lazarus, according to Elliptic, who noted that the utilization pattern is identical. According to the blog post, the company also discovered connections between the wallets containing the stolen funds from Atomic and some of the Lazarus breaches.

Non-custodial wallets, such as Atomic, allow users to retain their crypto autonomously, without relying on a centralized entity, which means that if users lose their wallet’s device or password, they can only recover funds using the seed phrase. Anyone with access to the seed phrase, on the other hand, can clone the wallet and steal the funds.

Three hours ago, Elliptic Investigations updated that Atomic Wallet hack funds have just been swapped for USDT and bridged to TRON.

It’s probable that the stolen crypto assets were mixed in wallets containing the proceeds of previous Lazarus Group attacks. This would be the first large crypto theft openly traced to Lazarus Group since the $100 million Horizon Bridge breach in June 2022. 

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decision.

文章来源于互联网:North Korean Hackers, Lazarus group, tied to the Atomic Wallet breach

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年6月12日 11:23
Next 2023年6月12日 12:06

Related articles

  • Wirex debit cards to witness interruptions soon

    TL;DR Breakdown Wirex debit cards suffer interruptions as a result of license revocation. The company says it is making efforts to resolve the issue. Description Wirex, a prominent multi-currency crypto payment app that offers fiat on-ramps, off-ramps, and debit cards, has notified some of its customers in an email that their debit cards may cease to function in the European Economic Area (EEA). The potential disruption arises from the Lithuanian central bank’s decision to revoke the license of UAB PayrNet, … Read more Wirex, a prominent multi-currency crypto payment app that offers fiat on-ramps, off-ramps, and debit cards, has notified some of its customers in an email that their debit cards may cease to function in the European Economic Area (EEA). The potential disruption arises from the Lithuanian central bank’s decision to revoke the license of UAB PayrNet, Wirex’s card provider. This development follows a similar announcement from Wirex’s competitor, Cryptopay, regarding potential card service interruptions in the region due to the same issue. Wirex to temporarily halt its debit card services The email sent to Wirex customers explained that…

    Article 2023年6月27日

  • OKX sets industry standard with 10th consecutive monthly Proof of Reserves

    TL;DR Breakdown OKX becomes the only major crypto exchange to release its 10th consecutive monthly Proof of Reserves (PoR) report, revealing $10.4 billion in primary assets and reserve ratios exceeding 100% for 22 commonly traded digital assets. Community sentiment strongly supports OKX’s focus on transparency and security, with 84% of Twitter survey respondents finding monthly PoR reports important and 88% emphasizing the importance of transparency when choosing a crypto platform. Description In a move that underscores its commitment to transparency and security, OKX, a global leader in Web3 technology and cryptocurrency exchange, has released its 10th consecutive monthly Proof of Reserves (PoR) report. The report reveals that the exchange holds $10.4 billion in primary assets, making it the only major crypto exchange to achieve this milestone. … Read more In a move that underscores its commitment to transparency and security, OKX, a global leader in Web3 technology and cryptocurrency exchange, has released its 10th consecutive monthly Proof of Reserves (PoR) report. The report reveals that the exchange holds $10.4 billion in primary assets, making it the only major crypto exchange…

    Article 2023年8月31日

  • US senators slam Meta’s ‘unrestrained’ AI release

    TL;DR Breakdown Two US senators, Richard Blumenthal, and Josh Hawley, have raised concerns about Meta chief executive Mark Zuckerberg and the tech giant’s “leaked” artificial intelligence model called LLaMA. They contended that Meta’s release of LLaMA lacked thorough consideration of the potential consequences, which they deemed a disservice to the public. While ChatGPT is programmed to reject certain requests, users have found ways to “jailbreak” the model and make it generate responses it would typically refuse. Two US senators, Richard Blumenthal, and Josh Hawley, have raised concerns about Meta chief executive Mark Zuckerberg and the tech giant’s “leaked” artificial intelligence model called LLaMA. The senators argue that LLaMA poses potential dangers and could be exploited for criminal activities. In a letter dated June 6, the senators criticized Zuckerberg’s decision to open source LLaMA and claimed that there were insufficient safeguards in Meta’s release of the AI model. While they acknowledged the benefits of open-source software, they contended that Meta’s release of LLaMA lacked thorough consideration of the potential consequences, which they deemed a disservice to the public. Initially, LLaMA had…

    Article 2023年6月11日

  • Australia surprises as third most represented nation in Ripple lawsuit

    TL;DR Breakdown John E. Deaton, representing XRP holders in the Ripple vs. SEC lawsuit, reveals that the U.S. accounts for 53% of the 75,000 XRP holders involved. Australia has unexpectedly risen to the third spot, narrowly beating Canada. XRP’s current market performance is bearish, with a 4.72% price decrease, trading at $0.4769.   Description In a recent revelation, John E. Deaton, the legal spearhead for XRP holders in the Ripple vs. SEC case, has unveiled compelling data. This data spotlights the global diversity of XRP holders involved in the lawsuit. The United States leads the pack, accounting for 53% of the 75,000 XRP holders in the case. Given that … Read more In a recent revelation, John E. Deaton, the legal spearhead for XRP holders in the Ripple vs. SEC case, has unveiled compelling data. This data spotlights the global diversity of XRP holders involved in the lawsuit. The United States leads the pack, accounting for 53% of the 75,000 XRP holders in the case. Given that the lawsuit centers on Ripple Labs’ U.S. activities, this majority is no surprise….

    Article 2023年9月12日

  • Ethereum self-custody wallet demands reach ATH

    TL;DR Breakdown Casa founder Jameson Lopp has confirmed that Ethereum self-custody wallets are at an all-time high. The company wants to create a user-friendly self-custody-supporting wallet. The demand for self-custody solutions for Ethereum is on the rise, as highlighted by Jameson Lopp, the co-founder and chief technology officer of Bitcoin wallet provider Casa. Speaking at Bitcoin 2023, Lopp revealed that Casa has witnessed an increasing number of Ethereum users seeking their services, prompting the company to extend its support to Ethereum. Traders clamor for Ethereum self-custody wallets The collapse of FTX in 2022 and similar incidents have raised awareness about the importance of securely storing Ethereum and Ethereum tokens like stablecoins. Lopp shared that Casa’s clients suffered losses due to such collapses, emphasizing the need for distributed cold-storage setups to safeguard not only Bitcoin but also other assets like stablecoins. In response to this pressing issue, Casa announced its decision to introduce Ethereum support in December. Despite facing criticism from Bitcoin enthusiasts on social media, the company proceeded with the plan, driven by the demands of its clients. Lopp acknowledged…

    Article 2023年5月21日
TOP