Categories
-Top News Asia News Tech Lite

CoinEx Hacker Accidentally Links to Stake Hack

The findings corroborate those of on-chain sleuth ZachXBT, who on X (formerly Twitter) said that the CoinEx hacker had “accidentally connected their address” to the Stake hack…reports Asian Lite News

The notorious North Korean hacking group Lazarus has been held responsible for stealing approximately $240 million worth of crypto assets in the last 104 days, a new report has revealed.

According to the blockchain surveillance firm Elliptic, the hacking group stole crypto assets from Atomic Wallet ($100 million) CoinsPaid ($37.3 million), Alphapo ($60 million), and Stake.com ($41 million).

The hacking group has been linked to five major crypto hacks over the past three months. The latest, according to blockchain data, was the global cryptocurrency exchange CoinEx, which was hacked last week for an estimated amount of $53 million.

However, CoinEx informed customers in a response update that it is still trying to calculate how much money was stolen, but current findings revealed that around $70 million was stolen from the platform — higher than the reported amount.

“Elliptic analysis confirms that some of the funds stolen from CoinEx were sent to an address which was used by the Lazarus group to launder funds stolen from the Drake-backed crypto casio Stake.com, albeit on a different blockchain,” the researchers said.

Moreover, the report said that the findings corroborate those of on-chain sleuth ZachXBT, who on X (formerly Twitter) said that the CoinEx hacker had “accidentally connected their address” to the Stake hack.

The hacker first transferred the stolen funds to Ethereum via a bridge that was used by Lazarus in the past. Then, the hacker moved the funds to a wallet address that is known to be under their control. The majority of the funds were taken from the Tron and Polygon blockchains.

According to the report, Lazarus hackers also used addresses seen in the Stake hack as well as an address seen in the $100 million Atomic wallet hack.

“In light of this blockchain activity, and in the absence of information suggesting the CoinEx hack was conducted by any other threat group, Elliptic agrees that Lazarus Group should be suspected for the theft of funds from CoinEx,” the researchers stated.

Other hacks in which Lazarus has been recently implicated include the crypto payments platform CoinsPaid in late June, and the crypto payment provider Alphapo in July.

Lazarus has been recently implicated in several other hacks involving crypto payment platforms, including CoinsPaid in June and Alphapo in July.

ALSO READ-Mark Cuban Loses $870K in Crypto Scam

Categories
Business

Hackers rob $53mn worth of crypto from CoinEx

“The precise amount of the loss is still being determined, and the affected fund is just a very small portion of CoinEx’s total asset,” it added…reports Asian Lite News

Global cryptocurrency exchange CoinEx has announced that its hot wallets were hacked and large amounts of digital assets stolen, which were used to support the platform’s operations.

The incident occurred on September 12, and preliminary assessment indicated that the unauthorised transactions involved Ethereum ($ETH), Tron ($TRON), and Polygon ($MATIC) cryptocurrency.

“On September 12, 2023, our Risk Control System detected anomalous withdrawals from several hot wallet addresses used to store CoinEx’s exchange assets. Promptly recognising the gravity of the situation, we immediately established a special investigative team to delve into the matter,” CoinEx Global wrote on X (formerly Twitter).

“The precise amount of the loss is still being determined, and the affected fund is just a very small portion of CoinEx’s total asset,” it added.

While CoinEx has not provided any information about the financial impact incurred because the investigation is still ongoing, a more recent estimate on the CoinEx losses from ‘CertiK Alert’ raises the figure to $53 million.

“The @coinexcom exploit losses have now reached an estimated $53 million taking the total losses for private key compromises this year to $377.7 million,” CertiK Alert posted on X.

Moreover, the cryptocurrency firm said that the affected users will receive full compensation for any loss due to this breach.

“Affected parties will receive 100 per cent compensation for any loss due to this breach. For added security, deposit & withdrawal services are temporarily suspended and will resume after a thorough review,” CoinEx said.

However, it’s not confirmed who hacked the CoinEx server and stole from them, but blockchain investigator ZachXBT believes that the North Korean state-backed group ‘Lazarus’ is responsible for this breach.

“It appears North Korea is also responsible for the $54M @coinexcom hack from yesterday after they accidentally connected their address to the $41M Stake hack on OP & Polygon,” ZachXBT said.

The threat group was linked to the theft of $35 million from Atomic Wallet in June, $60 million from Alphapo and $37.3 million from CoinsPaid in July.

ALSO READ-G20 Paves Way for Crypto Rules