A developer’s laptop breach led to the Bybit hack!
SAFE published a preliminary report on 6 March attributing the breach that led to the Bybit hack to a compromised developer laptop. It resulted in the injection of malware, allowing the hack.
The hackers used multi-factor authentication by exploiting active Amazon Web Services/AWS tokens, enabling unauthorized access.
The hackers modified Bybit’s Safe multi-signature wallet interface, changing the address to which the exchange was supposed to send roughly $1.5 billion worth of Ethereum, the largest hack in history thus far.
