Funds were moved through five instant exchanges before being sent to Tornado Cash, a mixing service previously sanctioned by the U.S. Treasury.
Blockchain investigator ZachXBT suggests similarities with tactics used in North Korean cyberattacks, hinting at potential involvement from DPRK-linked groups.
SBI Group has not yet commented publicly on the incident.
North Korean hacking groups like Lazarus Group have historically been involved in thefts amounting to billions in digital assets, often using mixers like Tornado Cash for laundering.
