Lazarus Group aka Hidden Cobra was accused by U.S. Treasury Department behind the theft of $620 million from Axie Infinity's Ronin Network last month…

Continue reading
Axie Infinity's Ronin Network bridge attack that resulted in a massive loss of $620 million in cryptocurrency was pulled off by the Lazarus Group aka Hidden Cobra. The U.S. Treasury Department found the involvement of the infamous North Korean in this biggerest ever DeFi attack stated in there recent report that the Ethereum wallet addresss of the threat actor in which the stolen funds were received was sanctioned by adding the address to the Office of Foreign Assets Control's (OFAC) Specially Designated Nationals (SDN) List.
_"The FBI, in coordination with Treasury and other U.S. government partners, will continue to expose and combat the DPRK's use of illicit activities – including cybercrime and cryptocurrency theft – to generate revenue for the regime,"_ stated by the intelligence and law enforcement agency in a statement.
Threat actors leveraged private keys to simulate fake withdrawals from the Ronin bridge network elaborated in this disclosure report a week after the incident got reported across.
U.S. authorities imposed the sanctions in order to curtail the chances of cashing out the stolen funds any further. While it was initially determined that 18% of the overall siphoned digital funds (about $97 million) as of April 14 were managed to get laundered till date, this comes from an analysis conducted by Elliptic.
Here the same laundered cash of $80.3 million used in Tornado Cash, a mixing service on the Ethereum blockchain designed to conceal the trail of funds, with another $9.7 million worth of ETH likely to be laundered in the same manner.
It all started with the detection of a suspicious HTM file received as a payload either as a link in a phishing email or downloaded from the internet that, when executed, triggered an infection sequence, eventually leading to the return of a second-stage payload from a remote server to facilitate further invasions.
Threat actors intended to attack, Symantec assessed, is to _"obtain intellectual property to further North Korea's own pursuits in this area."_
And to make it even worse, threat actors have extorted $1.3 billion worth of cryptocurrency in the first three months of 2022 alone, in reference to $3.2 billion that was stolen for the entirety of 2021, indicating a _"meteoric rise"_ in thefts from crypto platforms.
_"Almost 97% of all cryptocurrency stolen in the first three months of 2022 has been taken from DeFi protocols, up from 72% in 2021 and just 30% in 2020,"_ Chainalysis reported this week.
_"For DeFi protocols in particular, however, the largest thefts are usually thanks to faulty code. Code exploits and flash loan attacks — a type of code exploit involving the manipulation of cryptocurrency prices — has accounted for much of the value stolen outside of the Ronin attack,"_ the researchers started.

148 malicious npm packages masquerading as student proxy and school Wi-Fi bypass tools. Rather than compromising developers during installation