North Korea-affiliated hackers might have downsized their operations in the 2nd half of 2024 while getting ready for what ended up being the biggest crypto hack in history.
The crypto market was rocked by the huge hack on Feb. 21 when Bybit lost over $1.4 billion to the notorious North Korean Lazarus Group, which appears to have actually prepared the attack months beforehand.
According to blockchain analytics firm Chainalysis, illegal activity connected to North Korean cyber stars dramatically decreased after July 1, 2024, regardless of a rise in attacks previously that year.
The downturn in crypto hacks by North Korean representatives had actually raised substantial warnings, according to Eric Jardine, Chainalysis cybercrimes research study Lead.
North Korean hacking activity before and after July 1. Source: Chainalysis
North Korea’s downturn “began when Russia and DPRK [North Korea] satisfied for their top that caused a reallocation of North Korean resources, consisting of military workers to the war in Ukraine,” Jardine informed Cointelegraph throughout the Chainreaction program on March 26, including:
” So, we hypothesized in the report that there may have been extra things hidden in regards to resources reallocation from the DPRK, and after that you roll forward into early February, and you have the Bybit hack.”
https://t.co/jOlqMt4Hag
— Cointelegraph (@Cointelegraph) March 26, 2025
” The downturn that we observed might have been a regrouping to pick brand-new targets, probe facilities, or it might have been connected to those geopolitical occasions,” he included.
Related: Hyperliquid whale still holds 10% of JELLY memecoin after $6.2 M make use of
It took the Lazarus Group 10 days to wash 100% of the taken Bybit funds through the decentralized crosschain procedure THORChain, Cointelegraph reported on March 4.
Still, blockchain security specialists were enthusiastic that a part of the funds might be frozen and recuperated by Bybit. Since March 20, over 80% of the taken $1.4 billion was still traceable as blockchain detectives continue their efforts to freeze and recuperate the funds.
Related: Polymarket deals with analysis over $7M Ukraine mineral offer bet
How hackers staged the world’s most significant crypto hack
The Bybit attack highlights that even central exchanges with strong security steps stay susceptible to advanced cyberattacks, experts stated.
The attack shares resemblances with the $230 million WazirX hack and the $58 million Radiant Capital hack, according to Meir Dolev, co-founder and chief technical officer at Cyvers.
Dolev stated the Ethereum multisig cold wallet was jeopardized through a misleading deal, deceiving signers into unwittingly authorizing a harmful wise agreement reasoning modification.
” This enabled the hacker to acquire control of the cold wallet and move all ETH to an unidentified address,” Dolev informed Cointelegraph.
North Korea hacking activity. Source: Chainalysis
Throughout 2024, North Korean hackers took over $1.34 billion worth of digital properties throughout 47 events, a 102% boost from the $660 million taken in 2023, according to Chainalysis information.
This represented 61% of the overall crypto taken in 2024.
Publication: Memecoins are ded– However Solana ‘100x much better’ regardless of income plunge