Safe{Wallet} has accused the hacker group TraderTraitor, linked to North Korea, of the Bybit attack with $1.4 billion in damages.
Accusations against TraderTraitor
According to Safe{Wallet}, the FBI has officially linked the February attack to TraderTraitor, a group with ties to North Korea. Cybersecurity firm Mandiant, tracking the group as UNC4899, also confirmed this connection in a preliminary report. TraderTraitor has been involved in several major cryptocurrency thefts over recent years.
Details of the Attack
Attackers reportedly bypassed multi-factor authentication by hijacking a developer's laptop and stealing an AWS session token. This allowed hackers to gain access to Safe{Wallet} servers, raising concerns about potential system vulnerabilities.
Measures and Consequences
Following the incident, Safe{Wallet} has implemented enhanced security measures, strengthening its infrastructure beyond pre-incident levels. The company also assured users that their smart contracts were not affected. An ongoing investigation is aiming to determine the full extent of attacker activity post-breach.
Safe{Wallet} and other companies continue to bolster defenses against cyberattacks threatening cryptocurrency platforms. The investigation into the incident is ongoing.
