• bitcoinBitcoin (BTC) $ 95,209.00
  • ethereumEthereum (ETH) $ 3,116.73
  • tetherTether (USDT) $ 0.999810
  • xrpXRP (XRP) $ 2.21
  • bnbBNB (BNB) $ 928.27
  • usd-coinUSDC (USDC) $ 0.999801
  • tronTRON (TRX) $ 0.291949
  • staked-etherLido Staked Ether (STETH) $ 3,117.55
  • dogecoinDogecoin (DOGE) $ 0.157003
  • cardanoCardano (ADA) $ 0.486758
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.03
  • wrapped-stethWrapped stETH (WSTETH) $ 3,785.88
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 94,980.00
  • zcashZcash (ZEC) $ 698.03
  • whitebitWhiteBIT Coin (WBT) $ 52.58
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 3,375.32
  • hyperliquidHyperliquid (HYPE) $ 38.33
  • bitcoin-cashBitcoin Cash (BCH) $ 481.34
  • chainlinkChainlink (LINK) $ 13.76
  • usdsUSDS (USDS) $ 1.00
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 1.00
  • leo-tokenLEO Token (LEO) $ 9.18
  • stellarStellar (XLM) $ 0.254648
  • wethWETH (WETH) $ 3,116.77
  • ethena-usdeEthena USDe (USDE) $ 0.999932
  • wrapped-eethWrapped eETH (WEETH) $ 3,369.21
  • litecoinLitecoin (LTC) $ 96.56
  • moneroMonero (XMR) $ 392.94
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 95,008.00
  • avalanche-2Avalanche (AVAX) $ 15.01
  • hedera-hashgraphHedera (HBAR) $ 0.149933
  • suiSui (SUI) $ 1.69
  • shiba-inuShiba Inu (SHIB) $ 0.000009
  • uniswapUniswap (UNI) $ 7.30
  • daiDai (DAI) $ 0.999727
  • polkadotPolkadot (DOT) $ 2.77
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.20
  • the-open-networkToncoin (TON) $ 1.79
  • usdt0USDT0 (USDT0) $ 0.999493
  • crypto-com-chainCronos (CRO) $ 0.110344
  • canton-networkCanton (CC) $ 0.113572
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.145707
  • mantleMantle (MNT) $ 1.20
  • susdssUSDS (SUSDS) $ 1.08
  • memecoreMemeCore (M) $ 2.12
  • paypal-usdPayPal USD (PYUSD) $ 1.00
  • bittensorBittensor (TAO) $ 323.72
  • nearNEAR Protocol (NEAR) $ 2.34
  • usd1-wlfiUSD1 (USD1) $ 0.999547
  • internet-computerInternet Computer (ICP) $ 5.02
  • bitget-tokenBitget Token (BGB) $ 3.82
  • aaveAave (AAVE) $ 173.00
  • c1usdCurrency One USD (C1USD) $ 1.00
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • aster-2Aster (ASTER) $ 1.22
  • okbOKB (OKB) $ 112.67
  • ethereum-classicEthereum Classic (ETC) $ 14.65
  • tether-goldTether Gold (XAUT) $ 4,072.64
  • falcon-financeFalcon USD (USDF) $ 0.998097
  • aptosAptos (APT) $ 2.81
  • pepePepe (PEPE) $ 0.000005
  • pump-funPump.fun (PUMP) $ 0.003424
  • jito-staked-solJito Staked SOL (JITOSOL) $ 170.69
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 4.69
  • ethenaEthena (ENA) $ 0.261269
  • pi-networkPi Network (PI) $ 0.225892
  • binance-peg-wethBinance-Peg WETH (WETH) $ 3,114.11
  • solanaSolana (SOL) $ 137.34
  • ondo-financeOndo (ONDO) $ 0.562742
  • htx-daoHTX DAO (HTX) $ 0.000002
  • hash-2Provenance Blockchain (HASH) $ 0.031959
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.150752
  • kucoin-sharesKuCoin (KCS) $ 12.13
  • usdtbUSDtb (USDTB) $ 1.00
  • worldcoin-wldWorldcoin (WLD) $ 0.670319
  • official-trumpOfficial Trump (TRUMP) $ 7.06
  • algorandAlgorand (ALGO) $ 0.158947
  • filecoinFilecoin (FIL) $ 1.93
  • pax-goldPAX Gold (PAXG) $ 4,098.48
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.10
  • rocket-pool-ethRocket Pool ETH (RETH) $ 3,574.90
  • bfusdBFUSD (BFUSD) $ 0.999264
  • cosmosCosmos Hub (ATOM) $ 2.76
  • gatechain-tokenGate (GT) $ 11.02
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999967
  • arbitrumArbitrum (ARB) $ 0.234175
  • vechainVeChain (VET) $ 0.014974
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 38.57
  • binance-staked-solBinance Staked SOL (BNSOL) $ 149.37
  • wbnbWrapped BNB (WBNB) $ 928.90
  • syrupusdcsyrupUSDC (SYRUPUSDC) $ 1.14
  • dashDash (DASH) $ 91.70
  • kaspaKaspa (KAS) $ 0.043964
  • skySky (SKY) $ 0.050033
  • ignition-fbtcFunction FBTC (FBTC) $ 94,913.00
  • global-dollarGlobal Dollar (USDG) $ 0.999857
  • flare-networksFlare (FLR) $ 0.014120
  • ripple-usdRipple USD (RLUSD) $ 0.999840
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 3,300.78
  • hashnote-usycCircle USYC (USYC) $ 1.11
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 95,024.00
  • starknetStarknet (STRK) $ 0.238637
  • morphoMorpho (MORPHO) $ 2.02
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 3,327.57
  • render-tokenRender (RENDER) $ 2.03
  • nexoNEXO (NEXO) $ 1.01
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 94,469.00
  • sei-networkSei (SEI) $ 0.157047
  • story-2Story (IP) $ 2.97
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.996686
  • xdce-crowd-saleXDC Network (XDC) $ 0.053062
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 3,299.33
  • jupiter-exchange-solanaJupiter (JUP) $ 0.273425
  • bonkBonk (BONK) $ 0.000011
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 10.89
  • pancakeswap-tokenPancakeSwap (CAKE) $ 2.37
  • ousgOUSG (OUSG) $ 113.30
  • fasttokenFasttoken (FTN) $ 1.81
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.012498
  • rainRain (RAIN) $ 0.003266
  • mantle-staked-etherMantle Staked Ether (METH) $ 3,349.33
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 95,056.00
  • janus-henderson-anemoy-aaa-clo-fundJanus Henderson Anemoy AAA CLO Fund (JAAA) $ 1.01
  • aerodrome-financeAerodrome Finance (AERO) $ 0.844644
  • clbtcclBTC (CLBTC) $ 93,160.00
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 1.11
  • optimismOptimism (OP) $ 0.377636
  • immutable-xImmutable (IMX) $ 0.366916
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.273614
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.10
  • celestiaCelestia (TIA) $ 0.821946
  • cgeth-hashkey-cloudcgETH Hashkey Cloud (CGETH.HASH) $ 3,284.93
  • decredDecred (DCR) $ 37.76
  • injective-protocolInjective (INJ) $ 6.52
  • lido-daoLido DAO (LDO) $ 0.729990
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 158.34
  • blockstackStacks (STX) $ 0.347459
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 3,242.94
  • beldexBeldex (BDX) $ 0.082763
  • newton-projectAB (AB) $ 0.006908
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999893
  • curve-dao-tokenCurve DAO (CRV) $ 0.421795
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999797
  • the-graphThe Graph (GRT) $ 0.055595
  • usdaiUSDai (USDAI) $ 1.00
  • telcoinTelcoin (TEL) $ 0.006335
  • tezosTezos (XTZ) $ 0.547975
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 3,108.77
  • tbtctBTC (TBTC) $ 95,905.00
  • soon-2SOON (SOON) $ 1.96
  • msolMarinade Staked SOL (MSOL) $ 183.51
  • usual-usdUsual USD (USD0) $ 0.998276
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 3,116.16
  • iotaIOTA (IOTA) $ 0.129070
  • syrupMaple Finance (SYRUP) $ 0.460405
  • myx-financeMYX Finance (MYX) $ 2.69
  • mantle-bridged-usdt-mantleMantle Bridged USDT (Mantle) (USDT) $ 1.01
  • flokiFLOKI (FLOKI) $ 0.000054
  • pyth-networkPyth Network (PYTH) $ 0.089292
  • doublezeroDoubleZero (2Z) $ 0.147585
  • kaiaKaia (KAIA) $ 0.087461
  • ether-fiEther.fi (ETHFI) $ 0.889181
  • true-usdTrueUSD (TUSD) $ 0.996059
  • sbtc-2sBTC (SBTC) $ 112,329.00
  • gtethGTETH (GTETH) $ 3,119.88
  • stader-ethxStader ETHx (ETHX) $ 3,345.96
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.11
  • sonic-3Sonic (S) $ 0.126433
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 3,303.29
  • trust-wallet-tokenTrust Wallet (TWT) $ 1.13
  • ethereum-name-serviceEthereum Name Service (ENS) $ 12.40
  • the-sandboxThe Sandbox (SAND) $ 0.176856
  • ghoGHO (GHO) $ 0.999459
  • heliumHelium (HNT) $ 2.42
  • bitcoin-svBitcoin SV (BSV) $ 22.39
  • spx6900SPX6900 (SPX) $ 0.485794
  • usddUSDD (USDD) $ 0.999778
  • conflux-tokenConflux (CFX) $ 0.085794
  • bittorrentBitTorrent (BTT) $ 0.00000044
  • sun-tokenSun Token (SUN) $ 0.022136
  • eutblSpiko EU T-Bills Money Market Fund (EUTBL) $ 1.21
  • wrapped-hypeWrapped HYPE (WHYPE) $ 38.22
  • ether-fi-staked-ethether.fi Staked ETH (EETH) $ 3,105.22
  • flowFlow (FLOW) $ 0.255892
  • plasmaPlasma (XPL) $ 0.223726
  • jasmycoinJasmyCoin (JASMY) $ 0.008363
  • swethSwell Ethereum (SWETH) $ 3,402.93
  • usdbUSDB (USDB) $ 1.01
  • dogwifcoindogwifhat (WIF) $ 0.409766
  • galaGALA (GALA) $ 0.008822
  • pendlePendle (PENDLE) $ 2.42
  • theta-tokenTheta Network (THETA) $ 0.401566
  • binance-peg-dogecoinBinance-Peg Dogecoin (DOGE) $ 0.156165
  • coinbase-wrapped-staked-ethCoinbase Wrapped Staked ETH (CBETH) $ 3,428.30
  • bitcoin-avalanche-bridged-btc-bAvalanche Bridged BTC (Avalanche) (BTC.B) $ 94,574.00
  • apenftAINFT (NFT) $ 0.00000039
  • zksyncZKsync (ZK) $ 0.054227
  • vaultaVaulta (A) $ 0.236430
  • decentralandDecentraland (MANA) $ 0.198021
  • benqi-liquid-staked-avaxBENQI Liquid Staked AVAX (SAVAX) $ 18.51
Bitcoin

Lazarus Group at it again – New victim suspected in $3.1M Tron hack

By admin
0 74

Lazarus Group at it again – New victim suspected in $3.1M Tron hack

ZachXBT, the popular crypto sleuth, reported that a victim was hacked on Tron, leading to a loss of about $3.19M in USDT. The stolen USDT was transferred to Ethereum before the ETH was split among 10 addresses and deposited into Tornado Cash. ZachXBT attributes this hack to the notorious North Korean Lazarus Group.

Onchain Lens disclosed that ZachXBT had uncovered another malicious attack by a hacker, leading to the unknown victim’s loss of about 3.19M USDT. According to TronScan, the USDT was transferred to the Ethereum blockchain, where it was swapped for ETH and then split among 10 addresses before being deposited into Tornado Cash (96 X 10 ETH, 4 X 100 ETH, 78 X 1 ETH, 5 X 0.1 ETH).

ZachXBT pointed out that the hacker reused a theft address from the Michael Kong (Fantom/Sonic CEO) hack in October 2023, which had been previously attributed to the Lazarus Group as part of a ‘spearphishing campaign’ in a March 2024 report published by the UN.

On February 22, ZachXBT also revealed that the Lazarus Group had connected the Bybit hack to the Phemex hack directly on-chain by ‘commingling’ funds from the initial theft address for both incidents.

Lazarus Group adds unknown victim to the long list of crypto theft

Zach (@zachxbt) reported that a user was scammed by the Lazarus Group on Tron for approximately $3.2M $USDT

The stolen funds were transferred from #Tron to #Ethereum. The $ETH was then split among 10 addresses and deposited into Tornado Cash as follows: 96 x 10 ETH, 4 x 100 ETH,… pic.twitter.com/JRQ03rtflA

— Onchain Lens (@OnchainLens) March 1, 2025

According to ZachXBT, the Lazarus Group is suspected to have struck once again, this time targeting an unknown victim on Tron and stealing over 3.19M USDT. The loot was then quickly transferred to the Ethereum chain, swapped for ETH, and split among ten addresses before being deposited into Tornado Cash. TronScan data showed that the hacker(s) used two addresses, TYQ3455gFNeqyw and 0xcced1276382f4d, to siphon 3,199,779 USDT from a victim with the address TDNaLds1A1g6vYRU.

The malicious attack attributed to the North Korean hacking group suspected state links comes after a recent heist where the group reportedly stole over $1 billion from the Bybit exchange. Bybit was the victim of a record-breaking ~$1.5 billion Ethereum hack. North Korea’s Lazarus Group was the prime suspect in a sophisticated attack where the hackers infiltrated Bybit’s cold wallet and stole over 400K ETH.

Elliptic’s research claims the Bybit heist is arguably the largest crypto theft in history. The Lazarus Group is suspected of stealing over $6 billion worth of crypto assets since 2017. The proceeds were reportedly spent on North Korea’s ballistic missile program.

Elliptic follows the Lazarus Group’s patterns

According to Elliptic’s research, the Lazarus Group followed a characteristic pattern to launder stolen crypto tokens. The first step was to exchange any stolen tokens for a “native” blockchain asset such as Ether. The group reportedly opted for this method because tokens have issuers who, in some cases, can ‘freeze’ wallets containing stolen assets, but no central party can freeze Ether or Bitcoin.

That was exactly what happened in the minutes following the Bybit theft and the latest Tron hack involving an unknown victim. Hundreds of millions of dollars in stolen tokens were exchanged for ETH. They used decentralized exchanges (DEXs) to avoid any asset freezes that may happen if they use centralized exchanges (CEXs) to launder stolen funds.

As per Elliptic’s report, the second step of the laundering process was to conceal the transaction trail by ‘layering’ the stolen funds. These layering tactics can complicate the tracing process, buying the launderers valuable time to cash out the assets. The layering process includes sending funds through large numbers of cryptocurrency wallets and moving funds to other blockchains using cross-chain bridges or exchanges. It also includes other tactics like switching between different crypto-assets using DEXs, coin swap services, or exchanges and using ‘mixers’ such as Tornado Cash or Cryptomixer. eXch has also emerged as a major and willing facilitator of this laundering.

Source

admin 15100 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.