• bitcoinBitcoin (BTC) $ 78,684.00
  • ethereumEthereum (ETH) $ 1,569.11
  • tetherTether (USDT) $ 0.999514
  • xrpXRP (XRP) $ 1.92
  • bnbBNB (BNB) $ 553.73
  • usd-coinUSDC (USDC) $ 0.999931
  • solanaSolana (SOL) $ 107.64
  • dogecoinDogecoin (DOGE) $ 0.148086
  • tronTRON (TRX) $ 0.226799
  • cardanoCardano (ADA) $ 0.576745
  • staked-etherLido Staked Ether (STETH) $ 1,574.82
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 79,121.00
  • leo-tokenLEO Token (LEO) $ 8.84
  • usdsUSDS (USDS) $ 0.999991
  • the-open-networkToncoin (TON) $ 3.07
  • chainlinkChainlink (LINK) $ 11.43
  • stellarStellar (XLM) $ 0.233230
  • avalanche-2Avalanche (AVAX) $ 16.47
  • shiba-inuShiba Inu (SHIB) $ 0.000011
  • wrapped-stethWrapped stETH (WSTETH) $ 1,893.55
  • suiSui (SUI) $ 2.00
  • hedera-hashgraphHedera (HBAR) $ 0.146528
  • mantra-daoMANTRA (OM) $ 6.32
  • polkadotPolkadot (DOT) $ 3.60
  • bitcoin-cashBitcoin Cash (BCH) $ 272.32
  • litecoinLitecoin (LTC) $ 70.70
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 1.00
  • ethena-usdeEthena USDe (USDE) $ 0.999800
  • bitget-tokenBitget Token (BGB) $ 4.07
  • wethWETH (WETH) $ 1,580.72
  • pi-networkPi Network (PI) $ 0.586502
  • whitebitWhiteBIT Coin (WBT) $ 27.56
  • hyperliquidHyperliquid (HYPE) $ 11.04
  • moneroMonero (XMR) $ 196.36
  • wrapped-eethWrapped eETH (WEETH) $ 1,682.12
  • daiDai (DAI) $ 1.00
  • uniswapUniswap (UNI) $ 5.15
  • okbOKB (OKB) $ 50.39
  • susdssUSDS (SUSDS) $ 1.05
  • pepePepe (PEPE) $ 0.000006
  • aptosAptos (APT) $ 4.38
  • nearNEAR Protocol (NEAR) $ 2.17
  • gatechain-tokenGate (GT) $ 21.05
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 79,343.00
  • tokenize-xchangeTokenize Xchange (TKX) $ 29.93
  • ondo-financeOndo (ONDO) $ 0.761368
  • mantleMantle (MNT) $ 0.690480
  • crypto-com-chainCronos (CRO) $ 0.082923
  • internet-computerInternet Computer (ICP) $ 4.65
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.16
  • ethereum-classicEthereum Classic (ETC) $ 14.45
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.997505
  • aaveAave (AAVE) $ 131.08
  • cosmosCosmos Hub (ATOM) $ 4.40
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • vechainVeChain (VET) $ 0.020241
  • fasttokenFasttoken (FTN) $ 4.05
  • kaspaKaspa (KAS) $ 0.064558
  • bittensorBittensor (TAO) $ 198.26
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 79,215.00
  • ethenaEthena (ENA) $ 0.293678
  • official-trumpOfficial Trump (TRUMP) $ 7.92
  • filecoinFilecoin (FIL) $ 2.38
  • render-tokenRender (RENDER) $ 2.92
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.172320
  • celestiaCelestia (TIA) $ 2.48
  • algorandAlgorand (ALGO) $ 0.167826
  • sonic-3Sonic (prev. FTM) (S) $ 0.442113
  • arbitrumArbitrum (ARB) $ 0.275776
  • solv-btcSolv Protocol SolvBTC (SOLVBTC) $ 79,557.00
  • eosEOS (EOS) $ 0.751601
  • story-2Story (IP) $ 4.25
  • kucoin-sharesKuCoin (KCS) $ 8.49
  • makerMaker (MKR) $ 1,226.61
  • optimismOptimism (OP) $ 0.611552
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.391291
  • jupiter-exchange-solanaJupiter (JUP) $ 0.342007
  • usdt0USDT0 (USDT0) $ 0.998134
  • xdce-crowd-saleXDC Network (XDC) $ 0.062395
  • nexoNEXO (NEXO) $ 0.952502
  • binance-peg-wethBinance-Peg WETH (WETH) $ 1,582.02
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 1,640.44
  • binance-staked-solBinance Staked SOL (BNSOL) $ 111.82
  • dexeDeXe (DEXE) $ 15.42
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999621
  • blockstackStacks (STX) $ 0.542126
  • worldcoin-wldWorldcoin (WLD) $ 0.657129
  • movementMovement (MOVE) $ 0.326511
  • polygon-bridged-usdt-polygonPolygon Bridged USDT (Polygon) (USDT) $ 0.997450
  • bonkBonk (BONK) $ 0.000010
  • rocket-pool-ethRocket Pool ETH (RETH) $ 1,782.99
  • usual-usdUsual USD (USD0) $ 0.998235
  • flare-networksFlare (FLR) $ 0.011734
  • tether-goldTether Gold (XAUT) $ 3,032.43
  • the-graphThe Graph (GRT) $ 0.075004
  • theta-tokenTheta Network (THETA) $ 0.713716
  • paypal-usdPayPal USD (PYUSD) $ 0.999199
  • injective-protocolInjective (INJ) $ 7.30
  • sei-networkSei (SEI) $ 0.147771
  • immutable-xImmutable (IMX) $ 0.399451
  • solv-protocol-solvbtc-bbnSolv Protocol SolvBTC.BBN (SOLVBTC.BB) $ 79,310.00
  • wbnbWrapped BNB (WBNB) $ 560.53
  • pax-goldPAX Gold (PAXG) $ 3,042.16
  • lido-daoLido DAO (LDO) $ 0.712753
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 78,951.00
  • tezosTezos (XTZ) $ 0.591476
  • usdx-money-usdxStables Labs USDX (USDX) $ 1.00
  • curve-dao-tokenCurve DAO (CRV) $ 0.462153
  • mantle-staked-etherMantle Staked Ether (METH) $ 1,657.55
  • galaGALA (GALA) $ 0.013654
  • the-sandboxThe Sandbox (SAND) $ 0.242576
  • kaiaKaia (KAIA) $ 0.098627
  • bittorrentBitTorrent (BTT) $ 0.00000057
  • walrus-2Walrus (WAL) $ 0.451132
  • iotaIOTA (IOTA) $ 0.149914
  • bitcoin-svBitcoin SV (BSV) $ 27.36
  • fartcoinFartcoin (FARTCOIN) $ 0.529125
  • flowFlow (FLOW) $ 0.331453
  • honey-3Honey (HONEY) $ 0.999418
  • grassGrass (GRASS) $ 1.84
  • msolMarinade Staked SOL (MSOL) $ 139.21
  • berachain-beraBerachain (BERA) $ 4.57
  • jito-governance-tokenJito (JTO) $ 1.57
  • zcashZcash (ZEC) $ 31.30
  • flokiFLOKI (FLOKI) $ 0.000051
  • stargate-bridged-usdc-berachainStargate Bridged USDC (Berachain) (USDC.E) $ 1.01
  • beldexBeldex (BDX) $ 0.071262
  • true-usdTrueUSD (TUSD) $ 0.994304
  • pancakeswap-tokenPancakeSwap (CAKE) $ 1.67
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 1,634.16
  • spx6900SPX6900 (SPX) $ 0.518455
  • pendlePendle (PENDLE) $ 2.89
  • raydiumRaydium (RAY) $ 1.61
  • jasmycoinJasmyCoin (JASMY) $ 0.009565
  • kavaKava (KAVA) $ 0.425199
  • bridged-usdc-polygon-pos-bridgeBridged USDC (Polygon PoS Bridge) (USDC.E) $ 0.998240
  • heliumHelium (HNT) $ 2.59
  • sonic-bridged-usdc-e-sonicSonic Bridged USDC.e (Sonic) (USDC.E) $ 0.999462
  • pumpbtcpumpBTC (PUMPBTC) $ 78,185.00
  • pyth-networkPyth Network (PYTH) $ 0.120542
  • ethereum-name-serviceEthereum Name Service (ENS) $ 13.23
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 117.54
  • dydx-chaindYdX (DYDX) $ 0.555196
  • resolv-usrResolv USR (USR) $ 0.999542
  • coredaoorgCore (CORE) $ 0.422088
  • usdbUSDB (USDB) $ 1.03
  • saros-financeSaros (SAROS) $ 0.153754
  • decentralandDecentraland (MANA) $ 0.215693
  • axie-infinityAxie Infinity (AXS) $ 2.48
  • apenftAPENFT (NFT) $ 0.00000040
  • hashnote-usycHashnote USYC (USYC) $ 1.06
  • ousgOUSG (OUSG) $ 110.58
  • telcoinTelcoin (TEL) $ 0.004502
  • clbtcclBTC (CLBTC) $ 79,814.00
  • bitcoin-avalanche-bridged-btc-bAvalanche Bridged BTC (Avalanche) (BTC.B) $ 78,788.00
  • binance-peg-dogecoinBinance-Peg Dogecoin (DOGE) $ 0.149959
  • olympusOlympus (OHM) $ 23.24
  • elrond-erd-2MultiversX (EGLD) $ 13.41
  • reserve-rights-tokenReserve Rights (RSR) $ 0.006752
  • chilizChiliz (CHZ) $ 0.039529
  • mantle-restaked-ethMantle Restaked ETH (CMETH) $ 1,659.49
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.07
  • thorchainTHORChain (RUNE) $ 1.05
  • starknetStarknet (STRK) $ 0.126453
  • conflux-tokenConflux (CFX) $ 0.071673
  • compound-governance-tokenCompound (COMP) $ 40.38
  • ubtcuBTC (UBTC) $ 79,580.00
  • infrared-beraInfrared Bera (IBERA) $ 4.71
  • ecasheCash (XEC) $ 0.000018
  • roninRonin (RON) $ 0.563625
  • dogwifcoindogwifhat (WIF) $ 0.345650
  • neoNEO (NEO) $ 4.88
  • mantle-bridged-usdt-mantleMantle Bridged USDT (Mantle) (USDT) $ 0.992615
  • tbtctBTC (TBTC) $ 78,953.00
  • wormholeWormhole (W) $ 0.075800
  • arweaveArweave (AR) $ 5.20
  • fraxFrax (FRAX) $ 0.999914
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 1,579.41
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 1,577.40
  • super-oethSuper OETH (SUPEROETHB) $ 1,601.29
  • solayerSolayer (LAYER) $ 1.54
  • apecoinApeCoin (APE) $ 0.400156
  • cheems-tokenCheems Token (CHEEMS) $ 0.000002
  • beam-2Beam (BEAM) $ 0.006024
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 1,629.82
  • binance-peg-busdBinance-Peg BUSD (BUSD) $ 1.00
  • trust-wallet-tokenTrust Wallet (TWT) $ 0.746616
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.478429
  • terra-lunaTerra Luna Classic (LUNC) $ 0.000056
  • matic-networkPolygon (MATIC) $ 0.171664
  • plumePlume (PLUME) $ 0.147945
  • layerzeroLayerZero (ZRO) $ 2.66
  • justJUST (JST) $ 0.029892
  • chain-2Onyxcoin (XCN) $ 0.008706
  • usddUSDD (USDD) $ 0.999445
  • ripple-usdRipple USD (RLUSD) $ 1.00
  • ether-fi-staked-btcEther.fi Staked BTC (EBTC) $ 79,612.00
  • axelarAxelar (AXL) $ 0.301508
  • ether-fi-staked-ethether.fi Staked ETH (EETH) $ 1,576.17
  • amp-tokenAmp (AMP) $ 0.003315
Bitcoin

Lazarus Group at it again – New victim suspected in $3.1M Tron hack

By admin
0 14

Lazarus Group at it again – New victim suspected in $3.1M Tron hack

ZachXBT, the popular crypto sleuth, reported that a victim was hacked on Tron, leading to a loss of about $3.19M in USDT. The stolen USDT was transferred to Ethereum before the ETH was split among 10 addresses and deposited into Tornado Cash. ZachXBT attributes this hack to the notorious North Korean Lazarus Group.

Onchain Lens disclosed that ZachXBT had uncovered another malicious attack by a hacker, leading to the unknown victim’s loss of about 3.19M USDT. According to TronScan, the USDT was transferred to the Ethereum blockchain, where it was swapped for ETH and then split among 10 addresses before being deposited into Tornado Cash (96 X 10 ETH, 4 X 100 ETH, 78 X 1 ETH, 5 X 0.1 ETH).

ZachXBT pointed out that the hacker reused a theft address from the Michael Kong (Fantom/Sonic CEO) hack in October 2023, which had been previously attributed to the Lazarus Group as part of a ‘spearphishing campaign’ in a March 2024 report published by the UN.

On February 22, ZachXBT also revealed that the Lazarus Group had connected the Bybit hack to the Phemex hack directly on-chain by ‘commingling’ funds from the initial theft address for both incidents.

Lazarus Group adds unknown victim to the long list of crypto theft

Zach (@zachxbt) reported that a user was scammed by the Lazarus Group on Tron for approximately $3.2M $USDT

The stolen funds were transferred from #Tron to #Ethereum. The $ETH was then split among 10 addresses and deposited into Tornado Cash as follows: 96 x 10 ETH, 4 x 100 ETH,… pic.twitter.com/JRQ03rtflA

— Onchain Lens (@OnchainLens) March 1, 2025

According to ZachXBT, the Lazarus Group is suspected to have struck once again, this time targeting an unknown victim on Tron and stealing over 3.19M USDT. The loot was then quickly transferred to the Ethereum chain, swapped for ETH, and split among ten addresses before being deposited into Tornado Cash. TronScan data showed that the hacker(s) used two addresses, TYQ3455gFNeqyw and 0xcced1276382f4d, to siphon 3,199,779 USDT from a victim with the address TDNaLds1A1g6vYRU.

The malicious attack attributed to the North Korean hacking group suspected state links comes after a recent heist where the group reportedly stole over $1 billion from the Bybit exchange. Bybit was the victim of a record-breaking ~$1.5 billion Ethereum hack. North Korea’s Lazarus Group was the prime suspect in a sophisticated attack where the hackers infiltrated Bybit’s cold wallet and stole over 400K ETH.

Elliptic’s research claims the Bybit heist is arguably the largest crypto theft in history. The Lazarus Group is suspected of stealing over $6 billion worth of crypto assets since 2017. The proceeds were reportedly spent on North Korea’s ballistic missile program.

Elliptic follows the Lazarus Group’s patterns

According to Elliptic’s research, the Lazarus Group followed a characteristic pattern to launder stolen crypto tokens. The first step was to exchange any stolen tokens for a “native” blockchain asset such as Ether. The group reportedly opted for this method because tokens have issuers who, in some cases, can ‘freeze’ wallets containing stolen assets, but no central party can freeze Ether or Bitcoin.

That was exactly what happened in the minutes following the Bybit theft and the latest Tron hack involving an unknown victim. Hundreds of millions of dollars in stolen tokens were exchanged for ETH. They used decentralized exchanges (DEXs) to avoid any asset freezes that may happen if they use centralized exchanges (CEXs) to launder stolen funds.

As per Elliptic’s report, the second step of the laundering process was to conceal the transaction trail by ‘layering’ the stolen funds. These layering tactics can complicate the tracing process, buying the launderers valuable time to cash out the assets. The layering process includes sending funds through large numbers of cryptocurrency wallets and moving funds to other blockchains using cross-chain bridges or exchanges. It also includes other tactics like switching between different crypto-assets using DEXs, coin swap services, or exchanges and using ‘mixers’ such as Tornado Cash or Cryptomixer. eXch has also emerged as a major and willing facilitator of this laundering.

Source

admin 8001 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.