- The Issue:
- North Korea stole a massive amount of cryptocurrency (Ethereum) from a cryptocurrency exchange called Bybit.
- The stolen funds are being “laundered,” meaning they are being moved around in complex ways to obscure their origin and make them difficult to trace.
- Even though cryptocurrency transactions are recorded on a public “ledger” (the blockchain), North Korea is skilled at hiding the money.
- Chainalysis, a blockchain analysis company, is helping to track the stolen funds.
- Only a small portion of the stolen funds has been recovered.
- It was revealed that Bybit was not hacked directly. The hackers infiltrated Safe{Wallet}, a third-party service Bybit used for managing its cryptocurrency wallets.
- This is a “managed service provider” attack, where a company is compromised through a vendor or subcontractor.
- The Implications:
- It highlights the vulnerabilities of cryptocurrency exchanges and the challenges of recovering stolen cryptocurrency.
- It demonstrates the sophistication of North Korea’s cybercrime capabilities.
- It shows the importance of supply chain security, and how a compromise of one company, can lead to the compromise of many others.
- It also shows the usefullness and limitations of blockchain technology.
Links: FBI Report, Security Now
English 
简体中文