WazirX Cryptocurrency Exchange Loses $235M in Lazarus group-Linked Hack

  • WazirX lost $235M in a hack linked to North Korea’s Lazarus Group.
  • Stolen assets include $96.7M in SHIB, $52.6M in ETH, and $11M in MATIC.
  • Hacker employ TornadoCash to launder $234.9M in cryptocurrency transactions.

WazirX, an Indian cryptocurrency exchange platform has been a target of hacking, where about 1.67 billion in different cryptocurrencies were stolen. Blockchain analytics firm Elliptic said the attack utilized techniques associated with North Korea’s Lazarus group, which it noted tends to be highly skilled in its hacks.

Attack Details and Methodology

The preparation for the attack began at least eight days before the implementation of the attack. The threat actors applied the most severe type of threat acting on WazirX’s vulnerabilities and modifying the multi-signature wallet to a malicious one that enabled them to transfer funds without permission. 

Huge sums of cryptocurrency; such as $96.7M in Shiba Inu (SHIB), 52.6 million in Ethereum (ETH), $7.6 million in Polygon’s Matic (MATIC), and Pepe 11 million were stolen.

Mudit Gupta, the Chief Information Security Officer at Polygon Labs said it is characteristic of the Democratic People’s Republic of Korea (DPRK). It is necessary to note that the stolen funds are now located in someone’s wallet which, contains $72.4 million in assets.

Response and Recovery Efforts

In response to the breach, crypto security firm Arkham announced a bounty of 5000 ARKM coins to incentivize the identification of the hacker or recovery of the stolen funds. ZachXBT, a well-known crypto detective, has already contributed evidence towards identifying the hackers, demonstrating the community’s solidarity in tackling such incidents.

WazirX paused withdrawals to ensure the safety of user assets and is actively investigating the incident. In a statement, the exchange assured users that their funds were safe, despite the significant breach.

Use of TornadoCash 

The hackers used TornadoCash, a privacy tool for cryptocurrencies, to obscure transactions. This tactic mirrors previous hacks associated with Lazarus Group, complicating efforts to trace the funds and identify the involved parties. The compromised wallet has already offloaded 640.27 billion PEPE tokens worth $7.6 million and transferred substantial amounts of other cryptocurrencies.

Read Also:

Crypto News Land, also abbreviated as "CNL", is an independent media entity - we are not affiliated with any company in the blockchain and cryptocurrency industry. We aim to provide fresh and relevant content that will help build up the crypto space since we believe in its potential to impact the world for the better. All of our news sources are credible and accurate as we know it, although we do not make any warranty as to the validity of their statements as well as their motive behind it. While we make sure to double-check the veracity of information from our sources, we do not make any assurances as to the timeliness and completeness of any information in our website as provided by our sources. Moreover, we disclaim any information on our website as investment or financial advice. We encourage all visitors to do your own research and consult with an expert in the relevant subject before making any investment or trading decision.

Other posts