Lazarus Group Suspected in $3.2M Solana-to-Ethereum Crypto Theft

Lazarus Group, the notorious North Korea-affiliated company, is observed to be linked with a crypto theft of $3.2 million. The prominent on-chain analyst, ZachXBT, has given important insights about the matter.

Reportedly, 16th May was the attack day, highlighting remarkable concerns of the crypto community. The sophistication of attacks is increasing day by day, with state-linked cybercriminals. CoinRank has highlighted this issue through its official X account.

Stolen Funds Moved from Solana to Ethereum Anonymously

ZachXBT investigates the entire scene, highlighting that the Solana blockchain initially held these stolen tokens. Then, these stolen tokens were converted and bridged to Ethereum. A key red flag is included in the timeline of the operation.

On the 25th and 27th of June, two separate deposits are made, each consisting of 400 ETH, into Tornado Cash. Through these movements, a clear attempt to obfuscate is suggested, amassing ownership and origin of the stolen funds. The conversion in Tornado Cash was to hide identity and evade detection and tracking.

The Tactics of the Lazarus Group Spotlighted by CoinRank

The analysts of CoinRank observe that the pattern of the latest exploit shows a clear resemblance to the previous Lazarus operations. This exploit includes the strategy of cross-chain laundering. The use of privacy tools such as Tornado Cash further cements the stance. Blockchain transparency is facing a continuous challenge from the usage of such protocols.

DeFi, the Vernacular of Growing Threats of Nation-State Actors

By showcasing this incident, CoinRank aims to highlight the growing exploits of nation-state actors across decentralized finance (DeFi). With the evolution in the Lazarus Group’s tactics, the blockchain community is now too responsive to prevent further threats. Investigators urge users to be cautious while handling cross-chain large assets.