Indian cryptocurrency exchange WazirX has reported a significant security breach and announced that it is currently investigating the incident, which has led to a temporary suspension of both Indian rupee (INR) and cryptocurrency withdrawals.
The exchange has communicated to its users that it is working to address the issue and will provide updates as the situation evolves. The suspension of withdrawals is a precautionary measure to safeguard user assets.
Crypto researcher ZachXBT has traced the breach back to an address linked to a known hacking group.
1/ So I began tracing the $230M+ WazirX hack back from the original exploiter address and was able to make some interesting observations. https://t.co/gLHu05sXWZ pic.twitter.com/eFRNdLtACB
— ZachXBT (@zachxbt) July 18, 2024
By analyzing token transfers through various Ethereum addresses and mixers, he suspects that the Lazarus Group, a notorious North Korean hacking collective, might be involved in the attack.
ZachXBT has also identified a KYC-verified deposit address associated with the exploit, though he notes that such accounts can be easily acquired on the black market, which may complicate the investigation.
Arkham Intelligence has confirmed that ZachXBT’s findings, including the identification of the KYC-linked address, meet the criteria for their bounty. This information will be shared with WazirX as part of their ongoing investigation into the breach.
Following a major security breach at decentralized exchange Cetus, the Sui blockchain has moved swiftly to recover user funds.
French police have arrested more than a dozen individuals, including minors, in connection with a string of crypto-related kidnapping cases that have shaken Paris in recent weeks.
A bizarre cyberattack involving the hacked Instagram account of hip-hop group Migos has surfaced, allegedly as part of an attempted extortion scheme aimed at Solana co-founder Raj Gokal.
An Italian man narrowly escaped a harrowing ordeal in New York after being kidnapped and tortured in an alleged scheme to extract access to his digital wealth.