Bybit事件
1,034 views
3 Discussing
Hot
Latest
See original
Bybit releases hacker forensics report: in-depth analysis of the technical vulnerabilities and industry warnings of the largest cryptocurrency theft in history
APT attack chain and security reflections behind the theft of $1.5 billion
Background
On February 21, 2025, the cryptocurrency exchange Bybit suffered the largest hacker attack in history, with about $1.5 billion in assets (including ETH, stETH, etc.) stolen from its Ethereum cold wallet. This incident not only broke the record for the amount of money stolen in a single attack in the crypto industry, but also exposed deep loopholes in the security system of centralized exchanges. According to the forensic report released by Bybit (jointly provided by Sygnia and Verichains), the attacker broke through the multi-signature mechanism through sophisticated social engineering penetration and smart contract tampering, and finally completed the fund transfer.
Background
On February 21, 2025, the cryptocurrency exchange Bybit suffered the largest hacker attack in history, with about $1.5 billion in assets (including ETH, stETH, etc.) stolen from its Ethereum cold wallet. This incident not only broke the record for the amount of money stolen in a single attack in the crypto industry, but also exposed deep loopholes in the security system of centralized exchanges. According to the forensic report released by Bybit (jointly provided by Sygnia and Verichains), the attacker broke through the multi-signature mechanism through sophisticated social engineering penetration and smart contract tampering, and finally completed the fund transfer.
See original
$ETH #Bybit事件
"Hacker's identity confirmed: North Korea's Lazarus Group"
After Bybit was attacked, on-chain detective ZachXBT submitted a detailed analysis report to Arkham, confirming that the incident was caused by the North Korean hacker organization Lazarus Group.
According to Bybit CEO Ben Zhou’s explanation on the X platform: Hackers took control of Bybit’s Ethereum cold wallet through a carefully planned phishing attack, tricking the signatories of the multi-signature wallet into approving malicious transactions. Although the UI displayed the correct transfer address, the signing information actually changed the logic of the smart contract, causing the funds to be transferred to an unknown address.
In this attack, the hackers stole the following assets:
🔸401,347 Ether ($ETH , about $1.12 billion)
🔸90,376 Lido Staked Ether ($stETH, about $253 million)
🔸15,000 Mantle re-staked ether ($cmETH, about 44.13 million USD)
🔸 8,000 Mantle staked ETH ($mETH, ~$23 million)
On-chain data shows that the hacker has quickly converted part of the stolen assets into Ether and liquidated them on decentralized exchanges.
"Hacker's identity confirmed: North Korea's Lazarus Group"
After Bybit was attacked, on-chain detective ZachXBT submitted a detailed analysis report to Arkham, confirming that the incident was caused by the North Korean hacker organization Lazarus Group.
According to Bybit CEO Ben Zhou’s explanation on the X platform: Hackers took control of Bybit’s Ethereum cold wallet through a carefully planned phishing attack, tricking the signatories of the multi-signature wallet into approving malicious transactions. Although the UI displayed the correct transfer address, the signing information actually changed the logic of the smart contract, causing the funds to be transferred to an unknown address.
In this attack, the hackers stole the following assets:
🔸401,347 Ether ($ETH , about $1.12 billion)
🔸90,376 Lido Staked Ether ($stETH, about $253 million)
🔸15,000 Mantle re-staked ether ($cmETH, about 44.13 million USD)
🔸 8,000 Mantle staked ETH ($mETH, ~$23 million)
On-chain data shows that the hacker has quickly converted part of the stolen assets into Ether and liquidated them on decentralized exchanges.
See original
The timeline is as follows:
A few years ago, FTX crashed, and you were cheated on this platform. It dragged on for several years, and you received part of the compensation.
After receiving the compensation, you were elated and rushed into the Bybit platform with ETH.
Then Bybit was hacked and 1.5 billion US dollars worth of ETH was stolen.
Then it is said that the general announced the establishment of a $1.5 billion national strategic reserve of Ethereum.
You stood silently in the wind and rain, crying and singing:
Please dance your hands for me again
Let us keep love in our hearts
#bybit被盗 #Bybit事件 #钱包安全 #黑客攻击 #币安上线KAITO $BTC $ETH $BNB
A few years ago, FTX crashed, and you were cheated on this platform. It dragged on for several years, and you received part of the compensation.
After receiving the compensation, you were elated and rushed into the Bybit platform with ETH.
Then Bybit was hacked and 1.5 billion US dollars worth of ETH was stolen.
Then it is said that the general announced the establishment of a $1.5 billion national strategic reserve of Ethereum.
You stood silently in the wind and rain, crying and singing:
Please dance your hands for me again
Let us keep love in our hearts
#bybit被盗 #Bybit事件 #钱包安全 #黑客攻击 #币安上线KAITO $BTC $ETH $BNB
Login to explore more contents