• bitcoinBitcoin (BTC) $ 65,373.00
  • ethereumEthereum (ETH) $ 1,885.83
  • tetherTether (USDT) $ 0.999843
  • xrpXRP (XRP) $ 1.37
  • bnbBNB (BNB) $ 601.73
  • usd-coinUSDC (USDC) $ 0.999905
  • solanaSolana (SOL) $ 79.11
  • tronTRON (TRX) $ 0.283482
  • staked-etherLido Staked Ether (STETH) $ 2,265.05
  • dogecoinDogecoin (DOGE) $ 0.094620
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.02
  • bitcoin-cashBitcoin Cash (BCH) $ 534.32
  • whitebitWhiteBIT Coin (WBT) $ 49.00
  • usdsUSDS (USDS) $ 0.999968
  • cardanoCardano (ADA) $ 0.266388
  • wrapped-stethWrapped stETH (WSTETH) $ 2,779.67
  • leo-tokenLEO Token (LEO) $ 8.10
  • hyperliquidHyperliquid (HYPE) $ 26.44
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 76,243.00
  • ethena-usdeEthena USDe (USDE) $ 0.998336
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.998762
  • canton-networkCanton (CC) $ 0.159014
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 2,466.93
  • chainlinkChainlink (LINK) $ 8.39
  • moneroMonero (XMR) $ 314.22
  • stellarStellar (XLM) $ 0.152828
  • wrapped-eethWrapped eETH (WEETH) $ 2,465.31
  • usd1-wlfiUSD1 (USD1) $ 0.998966
  • rainRain (RAIN) $ 0.009506
  • susdssUSDS (SUSDS) $ 1.08
  • daiDai (DAI) $ 0.999935
  • hedera-hashgraphHedera (HBAR) $ 0.095177
  • paypal-usdPayPal USD (PYUSD) $ 0.999874
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 76,366.00
  • zcashZcash (ZEC) $ 243.41
  • litecoinLitecoin (LTC) $ 52.01
  • avalanche-2Avalanche (AVAX) $ 8.55
  • wethWETH (WETH) $ 2,268.37
  • shiba-inuShiba Inu (SHIB) $ 0.000006
  • suiSui (SUI) $ 0.883145
  • the-open-networkToncoin (TON) $ 1.36
  • usdt0USDT0 (USDT0) $ 0.998824
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.112826
  • crypto-com-chainCronos (CRO) $ 0.074166
  • tether-goldTether Gold (XAUT) $ 5,168.84
  • memecoreMemeCore (M) $ 1.39
  • pax-goldPAX Gold (PAXG) $ 5,205.62
  • uniswapUniswap (UNI) $ 3.38
  • polkadotPolkadot (DOT) $ 1.28
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.22
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • mantleMantle (MNT) $ 0.585364
  • aaveAave (AAVE) $ 116.44
  • falcon-financeFalcon USD (USDF) $ 0.997927
  • pepePepe (PEPE) $ 0.000004
  • aster-2Aster (ASTER) $ 0.688864
  • global-dollarGlobal Dollar (USDG) $ 0.999887
  • bittensorBittensor (TAO) $ 168.43
  • hashnote-usycCircle USYC (USYC) $ 1.12
  • bitget-tokenBitget Token (BGB) $ 2.24
  • okbOKB (OKB) $ 74.58
  • syrupusdcsyrupUSDC (SYRUPUSDC) $ 1.15
  • ripple-usdRipple USD (RLUSD) $ 0.999847
  • htx-daoHTX DAO (HTX) $ 0.000002
  • pi-networkPi Network (PI) $ 0.159275
  • skySky (SKY) $ 0.063557
  • bfusdBFUSD (BFUSD) $ 0.999276
  • ethereum-classicEthereum Classic (ETC) $ 8.41
  • nearNEAR Protocol (NEAR) $ 0.984863
  • ondo-financeOndo (ONDO) $ 0.251488
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 11.00
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.108864
  • gatechain-tokenGate (GT) $ 6.90
  • internet-computerInternet Computer (ICP) $ 2.05
  • kucoin-sharesKuCoin (KCS) $ 8.36
  • pump-funPump.fun (PUMP) $ 0.001869
  • worldcoin-wldWorldcoin (WLD) $ 0.376754
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 4.00
  • cosmosCosmos Hub (ATOM) $ 2.15
  • midnight-3Midnight (NIGHT) $ 0.059630
  • hash-2Provenance Blockchain (HASH) $ 0.017887
  • quant-networkQuant (QNT) $ 62.70
  • nexoNEXO (NEXO) $ 0.854478
  • jito-staked-solJito Staked SOL (JITOSOL) $ 124.46
  • usdtbUSDtb (USDTB) $ 0.999075
  • ethenaEthena (ENA) $ 0.098851
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 2,404.69
  • kaspaKaspa (KAS) $ 0.029904
  • eutblSpiko EU T-Bills Money Market Fund (EUTBL) $ 1.24
  • binance-peg-wethBinance-Peg WETH (WETH) $ 2,262.26
  • official-trumpOfficial Trump (TRUMP) $ 3.36
  • rocket-pool-ethRocket Pool ETH (RETH) $ 2,631.35
  • flare-networksFlare (FLR) $ 0.009225
  • algorandAlgorand (ALGO) $ 0.084337
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999945
  • usddUSDD (USDD) $ 0.999620
  • pippinpippin (PIPPIN) $ 0.731424
  • wbnbWrapped BNB (WBNB) $ 759.61
  • ousgOUSG (OUSG) $ 114.37
  • ignition-fbtcFunction FBTC (FBTC) $ 76,389.00
  • janus-henderson-anemoy-aaa-clo-fundJanus Henderson Anemoy AAA CLO Fund (JAAA) $ 1.03
  • render-tokenRender (RENDER) $ 1.37
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.12
  • filecoinFilecoin (FIL) $ 0.892028
  • xdce-crowd-saleXDC Network (XDC) $ 0.033549
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.11
  • aptosAptos (APT) $ 0.820862
  • vechainVeChain (VET) $ 0.007322
  • beldexBeldex (BDX) $ 0.080166
  • binance-staked-solBinance Staked SOL (BNSOL) $ 108.24
  • morphoMorpho (MORPHO) $ 1.60
  • janus-henderson-anemoy-treasury-fundJanus Henderson Anemoy Treasury Fund (JTRSY) $ 1.10
  • usual-usdUsual USD (USD0) $ 0.996623
  • arbitrumArbitrum (ARB) $ 0.092479
  • ghoGHO (GHO) $ 0.999667
  • bonkBonk (BONK) $ 0.000006
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999720
  • a7a5A7A5 (A7A5) $ 0.012883
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 76,461.00
  • stable-2​​Stable (STABLE) $ 0.028005
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 76,491.00
  • true-usdTrueUSD (TUSD) $ 0.998926
  • jupiter-exchange-solanaJupiter (JUP) $ 0.145015
  • fasttokenFasttoken (FTN) $ 1.09
  • clbtcclBTC (CLBTC) $ 76,920.00
  • usdaiUSDai (USDAI) $ 0.999700
  • euro-coinEURC (EURC) $ 1.18
  • sei-networkSei (SEI) $ 0.066984
  • decredDecred (DCR) $ 25.77
  • kite-2Kite (KITE) $ 0.243903
  • blockstackStacks (STX) $ 0.236097
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 2,419.84
  • dashDash (DASH) $ 32.85
  • pancakeswap-tokenPancakeSwap (CAKE) $ 1.25
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 33.97
  • tbtctBTC (TBTC) $ 70,942.00
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.006396
  • tezosTezos (XTZ) $ 0.367570
  • wrappedm-by-m0WrappedM by M0 (WM) $ 1.00
  • justJUST (JST) $ 0.044920
  • kinesis-goldKinesis Gold (KAU) $ 165.53
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.998898
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.597448
  • story-2Story (IP) $ 1.03
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.154876
  • c8ntinuumc8ntinuum (CTM) $ 0.080177
  • mantle-staked-etherMantle Staked Ether (METH) $ 2,455.82
  • chilizChiliz (CHZ) $ 0.033759
  • lighterLighter (LIT) $ 1.38
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999983
  • ether-fiEther.fi (ETHFI) $ 0.461232
  • resolv-wstusrResolv wstUSR (WSTUSR) $ 1.13
  • injective-protocolInjective (INJ) $ 3.39
  • cocaCOCA (COCA) $ 1.30
  • hastra-primePRIME (PRIME) $ 1.02
  • usxUSX (USX) $ 0.999774
  • apenftAINFT (NFT) $ 0.00000033
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 2,406.26
  • curve-dao-tokenCurve DAO (CRV) $ 0.223026
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 76,200.00
  • bittorrentBitTorrent (BTT) $ 0.00000033
  • sun-tokenSun Token (SUN) $ 0.016637
  • kaiaKaia (KAIA) $ 0.054531
  • gnosisGnosis (GNO) $ 119.24
  • wrapped-flareWrapped Flare (WFLR) $ 0.009961
  • layerzeroLayerZero (ZRO) $ 1.53
  • adi-tokenADI (ADI) $ 3.14
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 2,266.86
  • bitcoin-svBitcoin SV (BSV) $ 15.23
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.12
  • pyth-networkPyth Network (PYTH) $ 0.050592
  • crvusdcrvUSD (CRVUSD) $ 0.997758
  • iotaIOTA (IOTA) $ 0.066236
  • jasmycoinJasmyCoin (JASMY) $ 0.005734
  • humanityHumanity (H) $ 0.153984
  • binance-peg-xrpBinance-Peg XRP (XRP) $ 1.59
  • the-graphThe Graph (GRT) $ 0.026101
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 2,443.47
  • aerodrome-financeAerodrome Finance (AERO) $ 0.297276
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 2,421.84
  • fraxLegacy Frax Dollar (FRAX) $ 0.991740
  • flokiFLOKI (FLOKI) $ 0.000028
  • sbtc-2sBTC (SBTC) $ 77,039.00
  • olympusOlympus (OHM) $ 17.10
  • celestiaCelestia (TIA) $ 0.299524
  • btse-tokenBTSE Token (BTSE) $ 1.61
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 115.56
  • spx6900SPX6900 (SPX) $ 0.274577
  • savings-usddSavings USDD (SUSDD) $ 1.03
  • optimismOptimism (OP) $ 0.121002
  • heliumHelium (HNT) $ 1.37
  • conflux-tokenConflux (CFX) $ 0.049085
  • msolMarinade Staked SOL (MSOL) $ 133.18
  • lido-daoLido DAO (LDO) $ 0.296654
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 2,265.06
  • telcoinTelcoin (TEL) $ 0.002596
  • newton-projectAB (AB) $ 0.002480
  • syrupMaple Finance (SYRUP) $ 0.209482
  • doublezeroDoubleZero (2Z) $ 0.068016
  • staked-aaveStaked Aave (STKAAVE) $ 126.65
Bitcoin

Lazarus Group at it again – New victim suspected in $3.1M Tron hack

By admin
0 134

Lazarus Group at it again – New victim suspected in $3.1M Tron hack

ZachXBT, the popular crypto sleuth, reported that a victim was hacked on Tron, leading to a loss of about $3.19M in USDT. The stolen USDT was transferred to Ethereum before the ETH was split among 10 addresses and deposited into Tornado Cash. ZachXBT attributes this hack to the notorious North Korean Lazarus Group.

Onchain Lens disclosed that ZachXBT had uncovered another malicious attack by a hacker, leading to the unknown victim’s loss of about 3.19M USDT. According to TronScan, the USDT was transferred to the Ethereum blockchain, where it was swapped for ETH and then split among 10 addresses before being deposited into Tornado Cash (96 X 10 ETH, 4 X 100 ETH, 78 X 1 ETH, 5 X 0.1 ETH).

ZachXBT pointed out that the hacker reused a theft address from the Michael Kong (Fantom/Sonic CEO) hack in October 2023, which had been previously attributed to the Lazarus Group as part of a ‘spearphishing campaign’ in a March 2024 report published by the UN.

On February 22, ZachXBT also revealed that the Lazarus Group had connected the Bybit hack to the Phemex hack directly on-chain by ‘commingling’ funds from the initial theft address for both incidents.

Lazarus Group adds unknown victim to the long list of crypto theft

Zach (@zachxbt) reported that a user was scammed by the Lazarus Group on Tron for approximately $3.2M $USDT

The stolen funds were transferred from #Tron to #Ethereum. The $ETH was then split among 10 addresses and deposited into Tornado Cash as follows: 96 x 10 ETH, 4 x 100 ETH,… pic.twitter.com/JRQ03rtflA

— Onchain Lens (@OnchainLens) March 1, 2025

According to ZachXBT, the Lazarus Group is suspected to have struck once again, this time targeting an unknown victim on Tron and stealing over 3.19M USDT. The loot was then quickly transferred to the Ethereum chain, swapped for ETH, and split among ten addresses before being deposited into Tornado Cash. TronScan data showed that the hacker(s) used two addresses, TYQ3455gFNeqyw and 0xcced1276382f4d, to siphon 3,199,779 USDT from a victim with the address TDNaLds1A1g6vYRU.

The malicious attack attributed to the North Korean hacking group suspected state links comes after a recent heist where the group reportedly stole over $1 billion from the Bybit exchange. Bybit was the victim of a record-breaking ~$1.5 billion Ethereum hack. North Korea’s Lazarus Group was the prime suspect in a sophisticated attack where the hackers infiltrated Bybit’s cold wallet and stole over 400K ETH.

Elliptic’s research claims the Bybit heist is arguably the largest crypto theft in history. The Lazarus Group is suspected of stealing over $6 billion worth of crypto assets since 2017. The proceeds were reportedly spent on North Korea’s ballistic missile program.

Elliptic follows the Lazarus Group’s patterns

According to Elliptic’s research, the Lazarus Group followed a characteristic pattern to launder stolen crypto tokens. The first step was to exchange any stolen tokens for a “native” blockchain asset such as Ether. The group reportedly opted for this method because tokens have issuers who, in some cases, can ‘freeze’ wallets containing stolen assets, but no central party can freeze Ether or Bitcoin.

That was exactly what happened in the minutes following the Bybit theft and the latest Tron hack involving an unknown victim. Hundreds of millions of dollars in stolen tokens were exchanged for ETH. They used decentralized exchanges (DEXs) to avoid any asset freezes that may happen if they use centralized exchanges (CEXs) to launder stolen funds.

As per Elliptic’s report, the second step of the laundering process was to conceal the transaction trail by ‘layering’ the stolen funds. These layering tactics can complicate the tracing process, buying the launderers valuable time to cash out the assets. The layering process includes sending funds through large numbers of cryptocurrency wallets and moving funds to other blockchains using cross-chain bridges or exchanges. It also includes other tactics like switching between different crypto-assets using DEXs, coin swap services, or exchanges and using ‘mixers’ such as Tornado Cash or Cryptomixer. eXch has also emerged as a major and willing facilitator of this laundering.

Source

admin 18383 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.