Key Highlights:
- ๐ Lazarus Unmasked: FBI identifies North Korea-backed group behind Stake Casino’s breach.
- ๐ฐ $41 Million Gone: Hackers drain massive digital assets from the casino’s hot wallets.
- ๐ Trail Across Blockchains: Stolen funds traced through Ethereum, BNB Chain, and Polygon networks.
In the ever-evolving world of cryptocurrencies, security breaches are unfortunately a common headline. This time, it’s the crypto casino Stake that’s fallen victim.
But who’s behind this cunning attack? The answer might not surprise the cybersecurity aficionados: it’s the infamous Lazarus. ๐ฎ
Lazarus Strikes Stake Casino ๐ฐ
On a seemingly average day, September 6th to be exact, Stake Casino faced the wrath of Lazarus. According to a press release from none other than the FBI ๐ต๏ธ, the North Korea-backed hacker group Lazarus was the culprit. But, what really went down?
Timeline of the Heist ๐
- Sep. 4: Stake observed unsolicited transactions from some of its hot wallets. Major red flag, right?
- Immediate action: The casino paused withdrawals and deposits. Sadly, the damage was already done. A whopping $41 million in digital assets had vanished.
The Investigation Trail ๐
Enter the sleuths. The FBI, in collaboration with several blockchain security companies, put on their detective hats. Their findings? The devious attackers siphoned funds from Stake through popular networks such as Ethereum, BNB Chain, and Polygon.
The Wallets in Question ๐ง
It’s all in the numbers. Federal investigators pinpointed 33 wallets of interest, which included 22 Bitcoin (BTC) addresses. These were directly linked to the Stake breach, either receiving funds straight from Stake’s vulnerable wallets or aiding in funneling the ill-gotten gains.
Double Verification โ โ
Two security giants, Arkham and CertiK, shared insights. They both affirmed the hackers smartly moved funds to Avalanche before making their way to Bitcoinโs blockchain. So, how much is left with these miscreants? A mind-boggling $36 million on Ethereum, BNB Chain, and Polygon. ๐ฑ
Lazarus: Who Are They? ๐ฐ๐ต
Ever chanced upon APT38? It’s the alter ego of Lazarus, a gang of cyber villains. Whispers in the alley claim they’re funded by North Korea. Their loot since 2022? An astronomical nearly $2 billion from crypto platforms and related entities.
A History of High-Profile Heists ๐
Lazarus is no stranger to the limelight. Their rap sheet includes:
- Lightening Atomic Wallet by $100 million.
- Plundering Harmony’s Horizon bridge of a similar fortune.
- Recall the colossal Ronin breach? Lazarus pocketed over $600 million, marking it among the most notorious crypto breaches.
- That’s not the end! They pilfered a combined $97 million from crypto processors Alphapo and CoinsPaid ๐ช๏ธ.
Sanctions and Suspicions โ๏ธ
Last August, Tornado Cash, a prominent privacy tool, got flagged by the US Department of the Treasuryโs OFAC. The reason? Suspected ties to Lazarus. The theory? Lazarus allegedly employed Tornado Cash to launder vast sums.
Over the past 24 hours, the Hacker has been gradually bridging funds to the BTC Blockchain using a series of new wallets on Polygon and Avalanche.
— Arkham (@ArkhamIntel) September 7, 2023
They have so far bridged $4.5M to BTC addresses, with the remaining $36M still held on ETH/BNB/Polygon. pic.twitter.com/fiMy62ABwL
For more intricate details on Lazarus and their cyber escapades, swing by Wikipedia ๐.
Note ๐: Dabble in cryptocurrencies? Tread with caution. Ensure thorough groundwork and consult seasoned financial wizards prior to diving in ๐ฉ๐ฎ.
๐ฅ Register on Bybit Today and get up to $30,000
Sergio Richi
Editor, Logll Tech News