Bybit, a popular cryptocurrency exchange, is offering a reward of 10% of any recovered funds in an attempt to recoup some of the $1.4 billion in cryptocurrency that was stolen in what has been described as the largest crypto theft ever. The attack, which took place on February 21, is believed to have been carried out by North Korea’s Lazarus Group.
The incident involved unauthorized activity in one of Bybit’s ETH cold wallets. The attackers manipulated a transaction from the cold wallet to a warm wallet through a sophisticated attack that masked the signing interface. As a result, the attackers gained control of the ETH cold wallet and transferred its holdings to an unidentified address. Bybit’s security team, along with blockchain forensic experts, is actively investigating the incident.
Following the theft, Elliptic, a blockchain analysis firm, explained that the attackers engaged in a two-stage money laundering process. The first stage involved exchanging stolen tokens for native blockchain assets like Ether to avoid freezing by token issuers. The second stage, known as “layering,” aimed to obfuscate the transaction trail to complicate tracing efforts.
Lazarus is currently in the second stage of laundering the stolen funds, with a portion of the assets already moved to different wallets. Bybit has pledged up to $140 million to reward ethical cyber and network security experts who assist in retrieving the stolen cryptocurrencies. The exchange also released a new API to streamline recovery efforts and is developing a HackBounty platform to empower the industry in tracking down hackers.
Despite the security challenges faced by the crypto community, Bybit has reassured customers that no one will be left out of pocket due to the incident. Deposits and withdrawals are back to normal, and the exchange is close to 100% on its ETH reserves. Ben Zhou, co-founder and CEO of Bybit, expressed optimism about building a stronger defense system against cyber threats with the support of the industry.
Overall, the incident serves as a reminder of the importance of maintaining control over private keys and staying vigilant against malicious exploits in the crypto space. By working together and leveraging expertise in cybersecurity, the industry can overcome challenges and enhance its resilience to cyber threats.