FBI says North Korean hackers accountable for $100M Concord Horizon Bridge crypto heist
In June, hackers made off with $100 million in crypto belongings (opens in new tab) from the Concord Horizon Bridge. The FBI now says that “cyber actors related to the DPRK” have been behind the theft.
In keeping with the FBI (opens in new tab) (by way of The Hacker Information (opens in new tab)), the Lazarus Group was accountable for the June 24 heist, which compelled the corporate to briefly halt transactions for at the least 24 hours.
Concord’s Horizon Bridge might sound like an Apex Legends map, however it’s really a quick layer-1 blockchain that acts as a “bridge” for token transfers between Concord and the Ethereum community, Binance Chain, and Bitcoin. The hackers have been in a position to benefit from an exploit that allowed them to divert tokens saved from the bridge into their wallets.
The FBI stated the Concord intrusion resulted from an aggressive malware marketing campaign referred to as TraderTraitor (opens in new tab). The FBI, US Treasury Division, and CISA (Cybersecurity and Infrastructure Safety Company) warned that workers from crypto corporations are being focused with subtle “social engineering of victims.” Principally, hackers are getting victims to obtain malicious software program via misleading means.
The assertion says, “North Korean cyber actors used RAILGUN, a privateness protocol, to launder over $60 million price of Ethereum (ETH) stolen in the course of the June 2022 heist.” A bit of the ill-gotten Ethereum was “subsequently despatched to a number of digital asset service suppliers and transformed to bitcoin.”
The FBI, working with digital asset service suppliers, has reportedly frozen a portion of the stolen belongings. Nonetheless, the precise quantity is at present unclear how. 11 digital wallets have been publicly flagged to this point by the FBI.
“The FBI will proceed to show and fight the DPRK’s use of illicit actions—together with cybercrime and digital forex theft—to generate income for the regime,” the FBI stated.
This is not the primary main crypto-heist pulled off by the Lazarus Group: The identical group was accountable for the large $600 million Axie Infinity crypto-heist (opens in new tab) in April final yr. An FBI consultant informed PC Gamer on the time that North Korea is pulling crypto-robberies to sidestep US and UN sanctions to fund its weapons program.