Connect with us

Hi, what are you looking for?


Elliptic Blockchain Surveillance Firm: North Korean Lazarus Group Theft Spree Reaches $240 Million in 104 Days

Nefarious North Korean hacking group Lazarus has stolen nearly $240 million in cryptocurrencies in the past 104 days alone.

In a by blockchain surveillance firm Elliptic, Lazarus has been identified as the perpetrator behind a series of major cryptocurrency hacks in recent months, with their activity intensifying.

The most recent attack attributed to Lazarus targeted the global cryptocurrency exchange CoinEx, resulting in an .

Elliptic’s analysis revealed that funds stolen from CoinEx were sent to an address previously utilized by the Lazarus group for laundering funds pilfered from the Drake-backed crypto casino, albeit on a different blockchain.

As , the FBI has identified Lazarus as responsible for the theft of $41 million from Stake.

Elliptic’s findings align with those of on-chain investigator ZachXBT, who noted on Twitter that the CoinEx hacker had inadvertently linked their address to the Stake hack.

The hacker subsequently transferred the stolen funds to Ethereum using a bridge previously employed by Lazarus, before moving them to a wallet address under the hacker’s control.

A significant portion of the pilfered funds originated from the Tron and Polygon blockchains.

Furthermore, Elliptic discovered that Lazarus hackers had mixed the funds with addresses associated with the Stake hack and employed an address involved in the $100 million Atomic wallet hack in June.

Based on the blockchain activity and the absence of evidence pointing to any other threat group, Elliptic concluded that Lazarus Group is the likely culprit behind the CoinEx theft.

Lazarus Responsible For More Hacks

Recent investigations have connected Lazarus to additional hacks, including the crypto payments platform CoinsPaid in late June and the crypto payment provider Alphapo in July.

Elliptic observed a shift in Lazarus’ focus towards centralized platforms rather than decentralized ones, possibly due to the feasibility of conducting social engineering attacks against such targets.

In response to the attack, CoinEx released an open letter to the hackers, urging them to contact the company via email or through the blockchain to discuss a bug bounty and the return of the stolen funds.

So far this year, Web3 platforms have in hacks and rug pulls, according to a report from Web3 bug bounty platform Immunefi.

The report revealed a total of 211 separate incidents contributing to this massive sum, with the month of August alone accounting for $23.4 million in losses.

The surge in losses during August mostly contributed to projects hosted on the newly launched Ethereum Layer 2 Base network.

As per the report, Ethereum faced the most significant number of attacks, with five distinct incidents affecting protocols built on the network.

This post appeared first on

You May Also Like

Editor's Pick

Real gross domestic product rose at a revised 3.2 percent annualized rate in the third quarter versus a 0.6 percent rate of decline in...

Editor's Pick

In Risky Business: Why Insurance Markets Fail and What to Do About It (Yale University Press, 2023), economists Liran Einav (Stanford), Amy Finkelstein (MIT),...

Editor's Pick

After the final lecture of my Fall 2022 International Economic Policy course (an undergraduate offering meant to introduce non-economics majors to the economics of...

Editor's Pick

For years the North Korean playbook was obvious to the world. The Democratic People’s Republic of Korea wanted to be the center of attention....

Disclaimer:, its managers, its employees, and assigns (collectively “The Company”) do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.

Copyright © 2023