SafeWallet releases Bybit hack post-mortem report

3 months ago CryptoKorner
SafeWallet releases Bybit hack post-mortem report


The developer of SafeWallet has released a post-mortem report detailing the cybersecurity exploit that led to the $1.4 billion hack against Bybit in February.

According to a forensic analysis conducted by SafeWallet and cybersecurity firm Mandiant, the hacking group hijacked a Safe developer’s Amazon Web Services (AWS) session tokens to bypass the multifactor authentication security measures put in place by the firm.

SafeWallet’s AWS settings required team members to reauthenticate their AWS session tokens every 12 hours, which prompted the hacking group to attempt a breach by registering a multifactor authentication (MFA) device.

Following several failed attempts at registering an MFA device, the threat actors compromised a developer’s MacOS system, likely through malware installed on the system, and were able to use the AWS session tokens while the developer’s sessions were active.

okex

Once the hackers gained access, they worked within the Amazon Web Services environment to set up the attack.

A timeline of the Safe developer security exploit. Source: Safe

Mandiant’s forensic analysis also confirmed that the hackers were North Korean state actors who took 19 days to prepare and execute the attack.

The latest update reiterated that the cybersecurity exploit did not affect Safe’s smart contracts and added that the Safe development team put additional safeguards in place following what was the biggest hack in crypto history.

Related: Crypto lost to exploits, scams, hits $1.5B in February with Bybit hack: CertiK

FBI puts out an alert as Bybit hackers launder funds

The US Federal Bureau of Investigation (FBI) published an online alert asking node operators to block transactions from wallet addresses linked to the North Korean hackers, which the FBI said would be laundered and converted to fiat currency.

Cybercrime, North Korea, Cybersecurity, Hacks, Bybit, Lazarus Group

FBI warning about North Korean hackers behind Bybit hack. Source: FBI

Since that time, the Bybit hackers laundered 100% of the stolen crypto, comprising nearly 500,000 Ether-related tokens, in only 10 days.

On March 4, Bybit CEO Ben Zhou said that around 77% of the funds, valued at roughly $1.07 billion, are still traceable onchain, while approximately $280 million have gone dark.

However, Deddy Lavid, CEO of the Cyvers cybersecurity firm, said cybersecurity teams may still be able to trace and freeze some of the stolen funds.

Magazine: Lazarus Group’s favorite exploit revealed — Crypto hacks analysis



Source link

Fiverr

More Stories

Coinbase hacker trolls ZachXBT onchain after $42.5M THORChain swap

Coinbase hacker trolls ZachXBT onchain after $42.5M THORChain swap

6 hours ago CryptoKorner
Together AI Launches Code Sandbox and Interpreter for Enhanced AI Development

Together AI Launches Code Sandbox and Interpreter for Enhanced AI Development

1 day ago CryptoKorner
Indonesia’s DigiAsia shares pop 90% on plan to raise $100M to buy Bitcoin

Indonesia’s DigiAsia shares pop 90% on plan to raise $100M to buy Bitcoin

2 days ago CryptoKorner
Perfect Corp. Enhances Digital Beauty with NVIDIA AI and AR Technologies

Perfect Corp. Enhances Digital Beauty with NVIDIA AI and AR Technologies

3 days ago CryptoKorner
The Public internet is a bottleneck for blockchain — DoubleZero CEO

The Public internet is a bottleneck for blockchain — DoubleZero CEO

4 days ago CryptoKorner
JPMorgan’s Kinexys, Chainlink, Ondo Finance Demo Atomic DvP Settlement for Real-World Assets

JPMorgan’s Kinexys, Chainlink, Ondo Finance Demo Atomic DvP Settlement for Real-World Assets

5 days ago CryptoKorner

Leave a Reply

Your email address will not be published. Required fields are marked *

You may have missed

Whale Accumulation Drives 2% Gain as $2,500 Level Recaptured

Whale Accumulation Drives 2% Gain as $2,500 Level Recaptured

1 hour ago CryptoKorner
Behind-the-Meter Bitcoin Mining: Sangha Renewables Breaks Ground on 20 MW Texas Site

Behind-the-Meter Bitcoin Mining: Sangha Renewables Breaks Ground on 20 MW Texas Site

1 hour ago CryptoKorner
Exchanges are giving away over $10 million to celebrate Bitcoin Pizza Day today

Exchanges are giving away over $10 million to celebrate Bitcoin Pizza Day today

2 hours ago CryptoKorner
Technology Innovation Institute TII Releases Falcon-H1: Hybrid Transformer-SSM Language Models for Scalable, Multilingual, and Long-Context Understanding

Technology Innovation Institute TII Releases Falcon-H1: Hybrid Transformer-SSM Language Models for Scalable, Multilingual, and Long-Context Understanding

4 hours ago CryptoKorner
en en
bitcoin
Bitcoin (BTC) $ 111,073.76
ethereum
Ethereum (ETH) $ 2,650.93
tether
Tether (USDT) $ 1.00
xrp
XRP (XRP) $ 2.43
bnb
BNB (BNB) $ 685.85
solana
Solana (SOL) $ 178.18
usd-coin
USDC (USDC) $ 1.00
dogecoin
Dogecoin (DOGE) $ 0.240431
cardano
Cardano (ADA) $ 0.803977
tron
TRON (TRX) $ 0.279492
bitcoin
Bitcoin (BTC) $ 111,073.76
ethereum
Ethereum (ETH) $ 2,650.93
tether
Tether (USDT) $ 1.00
xrp
XRP (XRP) $ 2.43
bnb
BNB (BNB) $ 685.85
solana
Solana (SOL) $ 178.18
usd-coin
USDC (USDC) $ 1.00
dogecoin
Dogecoin (DOGE) $ 0.240431
cardano
Cardano (ADA) $ 0.803977
tron
TRON (TRX) $ 0.279492

Pin It on Pinterest

CryptoKorner
Bybit
CryptoKorner
SafeWallet releases Bybit hack post-mortem report
okex
Cybercrime, North Korea, Cybersecurity, Hacks, Bybit, Lazarus Group
Fiverr
Coinbase hacker trolls ZachXBT onchain after $42.5M THORChain swap
Together AI Launches Code Sandbox and Interpreter for Enhanced AI Development
Indonesia’s DigiAsia shares pop 90% on plan to raise $100M to buy Bitcoin
Perfect Corp. Enhances Digital Beauty with NVIDIA AI and AR Technologies
The Public internet is a bottleneck for blockchain — DoubleZero CEO
JPMorgan’s Kinexys, Chainlink, Ondo Finance Demo Atomic DvP Settlement for Real-World Assets
bitcoin
ethereum
bnb
xrp
cardano
solana
dogecoin
polkadot
shiba-inu
dai
Free book
Changelly
Whale Accumulation Drives 2% Gain as $2,500 Level Recaptured
Behind-the-Meter Bitcoin Mining: Sangha Renewables Breaks Ground on 20 MW Texas Site
Exchanges are giving away over $10 million to celebrate Bitcoin Pizza Day today
Technology Innovation Institute TII Releases Falcon-H1: Hybrid Transformer-SSM Language Models for Scalable, Multilingual, and Long-Context Understanding
Coinbase hacker trolls ZachXBT onchain after $42.5M THORChain swap
Whale Accumulation Drives 2% Gain as $2,500 Level Recaptured
Behind-the-Meter Bitcoin Mining: Sangha Renewables Breaks Ground on 20 MW Texas Site
Exchanges are giving away over $10 million to celebrate Bitcoin Pizza Day today
Technology Innovation Institute TII Releases Falcon-H1: Hybrid Transformer-SSM Language Models for Scalable, Multilingual, and Long-Context Understanding
ar
zh-CN
nl
en
fr
de
it
pt
ru
es
en
bitcoin
ethereum
tether
xrp
bnb
solana
usd-coin
dogecoin
cardano
tron
bitcoin
ethereum
tether
xrp
bnb
solana
usd-coin
dogecoin
cardano
tron