BleepingComputer - February 21, 2025 https://www.bleepingcomputer.com/ne...ecord-146-billion-from-bybit-eth-cold-wallet/ PS: I didn't know where to post this, and I don't know what a "ETH cold wallet" is.
Warm wallet - wallet for liquidity, current expenses, You transfer a lot of small transactions to/from this wallet, so people may give less scrutinity to them or company system may use it automatically. Rest of wealth goes to cold wallet(s). Transactions to/from cold wallet are relatively rare, so you can give them more scrutinity thus security.
More info... https://news.sky.com/story/worst-hack-in-history-as-1-5bn-in-cryptocurrency-stolen-13314456
"North Korea feared to be behind ‘worst hack in history... Blockchain analytics firm Arkham Intelligence have now accused North Korea's Lazarus Group of being behind the hack. The firm posted on social media that one of their trusted online sleuths gave them "definitive proof" that the attackers were from the infamous North Korean hacker group..." https://www.the-sun.com/money/13604...y-cybercriminals-steal-crypto-ethereum-bybit/
FBI - February 26, 2025 North Korea Responsible for $1.5 Billion Bybit Hack https://www.ic3.gov/PSA/2025/PSA250226
BleepingComputer - February 27, 2025 FBI confirms Lazarus hackers were behind $1.5B Bybit crypto heist https://www.bleepingcomputer.com/ne...s-hackers-were-behind-15b-bybit-crypto-heist/ Read there more.
Now there is even more information about the hack. Basically, they managed to target an employee's macOS laptop via social engineering. So he/she ended up installing some infostealer which obviously wasn't detected by macOS built-in security like Gatekeeper and XProtect. So with this infostealer, the hacker could intercept AWS cloud credentials and hijack the transaction. It pretty much means that security measures at both Bybit and Safe Wallet were a complete joke. It also means that macOS really isn't that much more secure than Windows. https://thehackernews.com/2025/03/safewallet-confirms-north-korean.html
