close
close

Safewallet launches post-mortem report bybit hack

Posted on by Online Niel
Safewallet launches post-mortem report bybit hack

The developer Safewallet has launched a post-mortem report detailing the exploitation of the cybersecurity that led to the $ 1.4 billion hack against Bybit in February.

According to a criminal analysis Designed by the company Safewallet and Cybersecurity, the hacking group diverted the Safenect Service Chips Amazon Web Services (AWS) to bypass security measures with multifactor to implement the company.

Safewallet AWS settings have forced the team members to reormify their AWS session chips every 12 hours, which caused the hacking group to try a multifactor authentication device (MFA).

Following several failed attempts to register a MFA device, the actors of the threat compromised the maccos system of a developerProbably by malware installed on the system and could use the AWS session chips while the developer sessions were active.

Once hackers have obtained access, they worked in the Amazon Web Services to configure the attack.

Cybercrime, North Korea, Cibersuritity, Hacks, Bybit, Lazarus Group

A chronology of safe developers security. Source: Safe

The medical -legal analysis of Mandiant also confirmed that the hackers were actors of the North Korean state who took 19 days to prepare and execute the attack.

The most recent update reiterated that the exploitation of cybersecurity did not affect SAFE intelligent contracts and added that SAF development team The biggest hack in crypto -crypto history.

Related: Crypto lost for exploitations, scams, reaches $ 1.5 billion in February with Bybit Hack: Certak

FBI takes out an alert while hackers bybit wash funds

US Federal Bureau (FBI) has published an online alert Ask the node operators to block transactions From the addresses of the wallet related to the North -Korean hackers, which FBI said will be washed and transformed into Fiat currency.

Cybercrime, North Korea, Cibersuritity, Hacks, Bybit, Lazarus Group

FBI warning about North -Korean hackers behind Bybit Hack. Source: FBI

From that moment, bybit hackers washed 100% of the stolen cryptocomprising nearly 500,000 chips related to ether, in just 10 days.

On March 4, the Bybit CEO, Ben Zhou, said that about 77% of funds, rated at about $ 1.07 billion, are still pursued Onchain, while about $ 280 million darkened.

However, Deddy Lavid, CEO of the Cyversic Cyber ​​Company, said that the Cibersecurity teams could still be able to follow and freeze some of the stolen funds.