North Korean Hackers Allegedly Linked to $305 Million Crypto Exchange Exploit

Recent developments suggest that the Lazarus Group, a notorious state-sponsored hacking entity, may be behind the $305 million breach of Japanese crypto exchange DMM Bitcoin.

Investigator ZachXBT noted similarities in the laundering techniques used in this incident, pointing to the group’s involvement.

1/4 So far in July 2024 more than $35M from the $305M DMM Bitcoin hack has been laundered to the online marketplace Huione Guarantee

It is suspected that Lazarus Group is behind the hack due to similarities in laundering techniques and off chain indicators. pic.twitter.com/g1ndlttBll

— ZachXBT (@zachxbt) July 14, 2024

The stolen funds, amounting to over $35 million, were reportedly funneled through Huione Guarantee, an online marketplace. Tether responded by blacklisting a Tron-based wallet containing $29.6 million in USDT linked to the hack. This wallet received approximately $14 million within a brief period.

The laundering process involved moving stolen Bitcoin through mixers before bridging it to Avalanche or Ethereum networks using various platforms. From there, the funds were converted into Tether USDT and further processed through the Tron network via SWFT, eventually ending up on Huione.

Huione Guarantee, part of the Cambodian Huioine Group, has gained notoriety as a hub for illicit crypto activities in Southeast Asia. According to Elliptic Research, the platform has facilitated suspicious transactions totaling at least $11 billion over the past three years, with 2024 alone seeing transactions surpassing $3 billion in USDT.

This incident underscores the challenges faced in securing digital assets and highlights the need for enhanced regulatory oversight in the crypto industry.