FlagThis

Bybit, a cryptocurrency exchange, suffered a major data breach resulting in the theft of over $1.5 billion in digital currency. The attackers, suspected to be the Lazarus Group, targeted the exchange’s offline Ethereum wallet, exploiting vulnerabilities in the Safe.global platform’s user interface. This incident highlights the growing threat of cryptocurrency heists, driven by the potential for significant financial gain and the challenges associated with tracing such crimes.

Malicious npm packages are targeting Ethereum developers, impersonating Hardhat plugins to steal private keys and other sensitive data. These packages, with names similar to legitimate Hardhat plugins, are downloaded over 1,000 times, potentially backdooring production systems and causing financial losses. The attackers use Ethereum smart contracts to store and distribute Command & Control (C2) server addresses to compromised systems. The attack uses a supply chain vulnerability.