Bybit Confirms $1.5 Billion Hack Linked to Compromised Safe Wallet
Bybit has published a forensic review of the $1.5 billion hack, confirming that its systems were not breached. The issue arose from compromised Safe wallet infrastructure.
- Credentials of a Safe developer were compromised, enabling the Lazarus hacking group to gain access.
- Bybit staff were deceived into signing a malicious transaction.
- A source indicated that the hack would not have occurred if Bybit had not "blind signed" the transaction.
- Safe stated that its smart contracts were unaffected and attributed the attack to a compromised developer machine linked to Bybit.
- A forensic review showed no vulnerabilities in Safe's smart contracts or frontend services.
- The situation resembles a previous incident between WazirX and Liminal Custody over a $230 million exploit.
- On-chain data reveals Lazarus is attempting to launder the stolen funds through 920 tainted wallets, linking it to other hacks involving Phemex and Poloniex.