Connect with us

Hi, what are you looking for?

Editor's Pick

Ozys’ Former Chief Security Officer Allegedly Weakened Security of Network Weeks Before $81.5M Hack

Source: Pixabay

South Korean blockchain network Ozys has made a damning revelation in the aftermath of its January 1, 2024 platform hack.

In a January 25 Medium blog post, Ozys CEO Jinhan Choi clarified that the breach was not a result of overlooked security measures on their part. Rather, it was a deliberate act by their former Chief Information Security Officer (CISO), who intentionally weakened the firewall security of the blockchain protocol.

Official Statement of Ozys Regarding ‘Orbit Bridge Exploit’

Please access the full statement below:

EN: https://t.co/t0UGI6oPRE KR: https://t.co/9PLrtCxuDR pic.twitter.com/l6dYBFwNce

— Orbit Chain (@Orbit_Chain) January 25, 2024

According to Choi, the undisclosed individual altered the network’s firewall policies on November 20, just two days before submitting a voluntary resignation request. The CISO then left the company on December 6, 2023, without any form of communication, leaving the team unaware of the security changes.

The anomaly was discovered on January 10 when approximately $81.5 million of investors’ digital funds mysteriously disappeared. The cyber attack, which was spread across six specific incidents, led to the transfer of $50 million in stablecoin (comprising $30 million in USDT, $10 million in MakerDAO’s DAI, and $10 million in USDC).

Additionally, 231 wrapped Bitcoins (wBTCs) valued at around $10 million and 9,500 Ether tokens worth $21.5 million were pilfered from the Orbit Bridge Chain.

These assets were converted to ETH and DAI before being transferred to eight crypto wallets. Currently, Ozys reports that the digital funds remain dormant in these wallets.

Ozys is actively collaborating with law enforcement agencies such as the Korea Internet Security Agency (KISA), National Police Agency (NPA), and others to address the issue. Legal action is also being pursued against the former CISO.

Furthermore, the cross-chain bridging network has contracted blockchain security firm Theori to audit its smart contracts code to prevent a recurrence of such incidents.

Lazarus Group Likely Involved

Another astonishing revelation shared by Choi involves the potential role the infamous North Korea-backed cyberthreat team Lazarus Group had to play in the company’s ordeal.

According to the Medium blog post, the state-backed cybercriminal group might be involved due to the apparent similarities surrounding the attack methodology used to breach the cross-chain service.

In light of this revelation, the Ozys team has notified the Korean National Intelligence Service (NIS) and the NPA’s Cyber Terror Investigation Unit to substantiate their fears.

The Lazarus Group has a track record of orchestrating various malicious campaigns against the burgeoning crypto ecosystem. Notably, in 2022, a Chainalysis report revealed that the Lazarus Group managed to abscond with $1.7 billion in stolen digital assets.

In 2023, these hackers exhibited no signs of slowing down in their malicious activities, having plundered a whopping $1 billion from the industry’s overall annual loss of $1.7 billion.

Funds stolen from crypto platforms in 2023 fell 54.3% to $1.7 billion. This is mostly due to a drop in DeFi hacking, which drove the increase in stolen crypto that we saw in 2021 and 2022. However, there still were several large DeFi hacks in 2023. pic.twitter.com/s8Ix982HR2

— Chainalysis (@chainalysis) January 24, 2024

In total, the Lazarus Group launched 20 malicious attacks and stole $428.8 million from DeFi protocols, $150 million from centralized crypto service operators, and $330.9 million from crypto exchanges in the span of a year.

The post Ozys’ Former Chief Security Officer Allegedly Weakened Security of Network Weeks Before $81.5M Hack appeared first on Cryptonews.

You May Also Like

Editor's Pick

As decentralized naming systems gain traction, Ethereum Name Service has seen ENS price double, leaving some FOMO investors asking is it too late to...

Economy

How can Forex crash? Forex market crash history Fact that the Forex is one of the most volatile and most profitable markets in the...

Editor's Pick

Colorado-based pastor Eligio “Eli” Regalado and his wife, Kaitlyn, are facing legal action after allegedly defrauding investors of millions of dollars through the sale...

Stock

Enthusiasm is needed to drive an uptrend, but sometimes enthusiasm can go too far. That is why technical analysts like to use various sentiment...

Disclaimer: happyretirementstories.com, its managers, its employees, and assigns (collectively “The Company”) do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.


Copyright © 2024 happyretirementstories.com