Cybersecurity experts warn that North Korean hackers, linked to the Lazarus Group, are adeptly laundering and cashing out stolen cryptocurrency from a recent $1.5 billion hack on ByBit, a crypto exchange. Despite ByBit's initiatives to track the funds, a substantial portion appears to have gone dark, bolstering the regime's questionable financial activities.
North Korean Hackers Successfully Launder $300 Million from $1.5 Billion ByBit Heist
North Korean Hackers Successfully Launder $300 Million from $1.5 Billion ByBit Heist
The notorious Lazarus Group has reportedly cashed out a significant portion of a massive crypto hack, raising concerns over the potential funding of North Korea's military endeavors.
Hackers associated with North Korea's Lazarus Group have successfully laundered approximately $300 million from their unprecedented $1.5 billion cryptocurrency heist of ByBit, a prominent exchange. This operation has unfolded over the last two weeks amid a complex pursuit to trace and intercept the criminal activities.
The Lazarus Group, notorious for its cybercriminal activities, has demonstrated unparalleled expertise in laundering cryptocurrency, with experts highlighting their relentless efforts to obfuscate money trails. "Every minute is crucial as they adeptly maneuver to conceal their track, utilizing advanced methods," stated Dr. Tom Robinson of Elliptic, an investigative firm specializing in cryptocurrency.
Elliptic's findings reveal that around 20% of the stolen funds have gone "dark," leaving little hope for future recovery. The U.S. and its allies have accused North Korea of executing numerous hacks aimed at financing military and nuclear projects in recent years. In a devious scheme, the hackers altered the digital wallet address linked to a significant Ethereum transfer from ByBit's supplier, ultimately rerouting the funds into their own possession.
Ben Zhou, CEO of ByBit, reassured users that the firm had ensured the security of their deposits despite the breach. ByBit has been proactive in its response, launching a bounty program to involve the public in tracking the stolen assets. So far, participants have helped identify $40 million in diverted funds, earning over $4 million in rewards.
However, experts express skepticism over the possibility of reclaiming remaining assets due to the sophisticated laundering infrastructure North Korea has built within its isolated economy. Cybersecurity specialist Dr. Dorit Dor from Check Point noted that the regime's indifference to its negative reputation in the cybercrime sphere contributes to its ongoing successes.
Meanwhile, the crypto exchange eXch has faced criticism for allegedly allowing substantial sums related to the hack to traverse its platform. Its owner, Johann Roberts, contested these claims, citing ongoing disputes with ByBit and asserting that his team was initially uncertain about the nature of the funds.
This incident is part of a broader trend where members of the Lazarus Group have shifted their focus from traditional bank targets to cryptocurrency exchanges, which are perceived as less fortified against attacks. The group's extensive hacking history includes notable breaches of exchanges and other financial systems, highlighting a persistent threat to the cryptocurrency sector.
The U.S. has placed some of the suspects on its Cyber Most Wanted list, though apprehending them remains a formidable challenge given their extensive cover within North Korea.
