would (would) 
Bybit Ethereum Wallet Hack: Independent Audit Reveals Lazarus Group Infiltration
A recent independent audit has confirmed that North Korea’s Lazarus Group was responsible for compromising Bybit’s ethereum wallet. The audit, conducted by Sygnia Labs and Verichain, found that Bybit’s security integrity remained intact despite the attack.
Attack Vector Identified
The forensic analysis revealed that the Lazarus Group infiltrated Safe’s infrastructure, compromising a Safe developer machine. This allowed the attackers to “hot swap” the Gnosis Safe UI with malicious JavaScript code that targeted Bybit’s cold wallet.
According to Haseeb Qureshi, managing partner at Dragonfly, “They hot swapped the Gnosis Safe UI with JS code that only targeted Bybit’s cold wallet.” This means that the attackers successfully compromised a Safe developer with access to specific frontend deployment credentials, allowing them to disguise malicious transactions.
Post-Mortem Audit Findings
The post-mortem audit, conducted by Sygnia Labs and Verichain, found no vulnerabilities in the Safe smart contracts or source code. Safe acknowledged the findings, reaffirming that Bybit’s security remained intact while confirming the attack vector.
Restoring Safe{Wallet} on Ethereum Mainnet
Following the incident, the Safe{Wallet} team conducted a thorough investigation and restored Safe{Wallet} on Ethereum mainnet with a phased rollout. The team fully rebuilt, reconfigured all infrastructure, and rotated all credentials, ensuring the attack vector is fully eliminated.
Lessons Learned and Future Security Measures
- Making it easy to verify transactions independent of what is shown on the front end
- Having additional processes to co-sign transactions
Safe always put security first. Including securing its web frontend. It was compromised anyway. We need to add more layers of security…
Stay Informed with Global Crypto News
For more news on cryptocurrencies, investing, and finance, visit Global Crypto News. Stay up-to-date with the latest developments in the crypto world and learn how to protect your assets from potential threats.
