• bitcoinBitcoin (BTC) $ 91,501.00
  • ethereumEthereum (ETH) $ 3,035.74
  • tetherTether (USDT) $ 0.999990
  • xrpXRP (XRP) $ 2.20
  • bnbBNB (BNB) $ 889.65
  • solanaSolana (SOL) $ 140.93
  • usd-coinUSDC (USDC) $ 0.999795
  • tronTRON (TRX) $ 0.280239
  • staked-etherLido Staked Ether (STETH) $ 3,033.12
  • dogecoinDogecoin (DOGE) $ 0.150930
  • cardanoCardano (ADA) $ 0.424369
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.05
  • whitebitWhiteBIT Coin (WBT) $ 59.36
  • wrapped-stethWrapped stETH (WSTETH) $ 3,702.55
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 91,138.00
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 3,288.23
  • bitcoin-cashBitcoin Cash (BCH) $ 533.96
  • hyperliquidHyperliquid (HYPE) $ 35.82
  • usdsUSDS (USDS) $ 0.999786
  • chainlinkChainlink (LINK) $ 13.31
  • leo-tokenLEO Token (LEO) $ 9.77
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.999779
  • stellarStellar (XLM) $ 0.255659
  • wethWETH (WETH) $ 3,036.21
  • wrapped-eethWrapped eETH (WEETH) $ 3,284.20
  • zcashZcash (ZEC) $ 471.07
  • moneroMonero (XMR) $ 409.30
  • ethena-usdeEthena USDe (USDE) $ 0.998932
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 91,436.00
  • litecoinLitecoin (LTC) $ 85.05
  • avalanche-2Avalanche (AVAX) $ 15.02
  • hedera-hashgraphHedera (HBAR) $ 0.147134
  • suiSui (SUI) $ 1.55
  • shiba-inuShiba Inu (SHIB) $ 0.000009
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.163479
  • daiDai (DAI) $ 0.998951
  • crypto-com-chainCronos (CRO) $ 0.111095
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.21
  • the-open-networkToncoin (TON) $ 1.61
  • susdssUSDS (SUSDS) $ 1.08
  • uniswapUniswap (UNI) $ 6.21
  • paypal-usdPayPal USD (PYUSD) $ 0.999002
  • usdt0USDT0 (USDT0) $ 0.999328
  • polkadotPolkadot (DOT) $ 2.32
  • mantleMantle (MNT) $ 1.08
  • canton-networkCanton (CC) $ 0.089178
  • bittensorBittensor (TAO) $ 305.33
  • aaveAave (AAVE) $ 185.58
  • usd1-wlfiUSD1 (USD1) $ 0.998942
  • bitget-tokenBitget Token (BGB) $ 3.64
  • nearNEAR Protocol (NEAR) $ 1.90
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • okbOKB (OKB) $ 109.43
  • memecoreMemeCore (M) $ 1.32
  • aster-2Aster (ASTER) $ 1.12
  • internet-computerInternet Computer (ICP) $ 4.07
  • falcon-financeFalcon USD (USDF) $ 0.997897
  • tether-goldTether Gold (XAUT) $ 4,160.15
  • pi-networkPi Network (PI) $ 0.260199
  • ethenaEthena (ENA) $ 0.289742
  • ethereum-classicEthereum Classic (ETC) $ 13.88
  • pepePepe (PEPE) $ 0.000005
  • jito-staked-solJito Staked SOL (JITOSOL) $ 175.55
  • binance-peg-wethBinance-Peg WETH (WETH) $ 3,035.91
  • pump-funPump.fun (PUMP) $ 0.003011
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 4.75
  • rainRain (RAIN) $ 0.007008
  • ondo-financeOndo (ONDO) $ 0.522436
  • htx-daoHTX DAO (HTX) $ 0.000002
  • aptosAptos (APT) $ 2.16
  • worldcoin-wldWorldcoin (WLD) $ 0.648290
  • kaspaKaspa (KAS) $ 0.056528
  • kucoin-sharesKuCoin (KCS) $ 11.54
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.136597
  • pax-goldPAX Gold (PAXG) $ 4,179.89
  • syrupusdcsyrupUSDC (SYRUPUSDC) $ 1.14
  • usdtbUSDtb (USDTB) $ 0.999662
  • bfusdBFUSD (BFUSD) $ 0.998984
  • rocket-pool-ethRocket Pool ETH (RETH) $ 3,487.12
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999787
  • hash-2Provenance Blockchain (HASH) $ 0.024847
  • algorandAlgorand (ALGO) $ 0.144766
  • ripple-usdRipple USD (RLUSD) $ 0.999844
  • arbitrumArbitrum (ARB) $ 0.219413
  • wbnbWrapped BNB (WBNB) $ 890.05
  • gatechain-tokenGate (GT) $ 10.47
  • official-trumpOfficial Trump (TRUMP) $ 6.11
  • hashnote-usycCircle USYC (USYC) $ 1.11
  • global-dollarGlobal Dollar (USDG) $ 0.999653
  • flare-networksFlare (FLR) $ 0.015365
  • vechainVeChain (VET) $ 0.013890
  • cosmosCosmos Hub (ATOM) $ 2.49
  • binance-staked-solBinance Staked SOL (BNSOL) $ 152.71
  • skySky (SKY) $ 0.051621
  • filecoinFilecoin (FIL) $ 1.62
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 3,213.73
  • ignition-fbtcFunction FBTC (FBTC) $ 91,598.00
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 36.01
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 91,601.00
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 3,252.73
  • nexoNEXO (NEXO) $ 1.01
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 91,343.00
  • xdce-crowd-saleXDC Network (XDC) $ 0.053641
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.11
  • render-tokenRender (RENDER) $ 1.81
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.996796
  • sei-networkSei (SEI) $ 0.139724
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 10.90
  • story-2Story (IP) $ 2.57
  • pancakeswap-tokenPancakeSwap (CAKE) $ 2.46
  • morphoMorpho (MORPHO) $ 1.55
  • bonkBonk (BONK) $ 0.000010
  • jupiter-exchange-solanaJupiter (JUP) $ 0.251854
  • ousgOUSG (OUSG) $ 113.44
  • janus-henderson-anemoy-aaa-clo-fundJanus Henderson Anemoy AAA CLO Fund (JAAA) $ 1.02
  • mantle-staked-etherMantle Staked Ether (METH) $ 3,288.42
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 3,230.29
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 91,300.00
  • dashDash (DASH) $ 58.40
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.275523
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.011353
  • clbtcclBTC (CLBTC) $ 90,661.00
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.10
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 162.62
  • spx6900SPX6900 (SPX) $ 0.710098
  • starknetStarknet (STRK) $ 0.142085
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.971218
  • aerodrome-financeAerodrome Finance (AERO) $ 0.701591
  • curve-dao-tokenCurve DAO (CRV) $ 0.442705
  • optimismOptimism (OP) $ 0.331243
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999796
  • usdaiUSDai (USDAI) $ 0.999065
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 3,158.69
  • injective-protocolInjective (INJ) $ 6.16
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999435
  • beldexBeldex (BDX) $ 0.081415
  • lido-daoLido DAO (LDO) $ 0.667291
  • blockstackStacks (STX) $ 0.319659
  • msolMarinade Staked SOL (MSOL) $ 189.06
  • tbtctBTC (TBTC) $ 90,866.00
  • fasttokenFasttoken (FTN) $ 1.31
  • newton-projectAB (AB) $ 0.006328
  • the-graphThe Graph (GRT) $ 0.051864
  • usual-usdUsual USD (USD0) $ 0.997398
  • tezosTezos (XTZ) $ 0.502641
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 3,034.36
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 3,035.82
  • celestiaCelestia (TIA) $ 0.610009
  • true-usdTrueUSD (TUSD) $ 0.996554
  • cgeth-hashkey-cloudcgETH Hashkey Cloud (CGETH.HASH) $ 2,460.42
  • myx-financeMYX Finance (MYX) $ 2.56
  • ether-fiEther.fi (ETHFI) $ 0.801813
  • mantle-bridged-usdt-mantleMantle Bridged USDT (Mantle) (USDT) $ 1.00
  • iotaIOTA (IOTA) $ 0.116553
  • flokiFLOKI (FLOKI) $ 0.000050
  • usddUSDD (USDD) $ 0.999886
  • kaiaKaia (KAIA) $ 0.080263
  • pendlePendle (PENDLE) $ 2.83
  • gtethGTETH (GTETH) $ 3,036.01
  • stader-ethxStader ETHx (ETHX) $ 3,263.66
  • telcoinTelcoin (TEL) $ 0.004873
  • ethereum-name-serviceEthereum Name Service (ENS) $ 11.76
  • pyth-networkPyth Network (PYTH) $ 0.077192
  • eutblSpiko EU T-Bills Money Market Fund (EUTBL) $ 1.21
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 3,206.27
  • plasmaPlasma (XPL) $ 0.221496
  • trust-wallet-tokenTrust Wallet (TWT) $ 1.04
  • conflux-tokenConflux (CFX) $ 0.083674
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.11
  • ghoGHO (GHO) $ 0.999464
  • the-sandboxThe Sandbox (SAND) $ 0.160177
  • bitcoin-svBitcoin SV (BSV) $ 20.99
  • sonic-3Sonic (S) $ 0.110506
  • doublezeroDoubleZero (2Z) $ 0.119508
  • heliumHelium (HNT) $ 2.22
  • basic-attention-tokenBasic Attention (BAT) $ 0.276247
  • wrapped-hypeWrapped HYPE (WHYPE) $ 35.77
  • decredDecred (DCR) $ 23.80
  • bittorrentBitTorrent (BTT) $ 0.00000041
  • sun-tokenSun Token (SUN) $ 0.021273
  • usdbUSDB (USDB) $ 0.997321
  • swethSwell Ethereum (SWETH) $ 3,337.90
  • sbtc-2sBTC (SBTC) $ 92,080.00
  • monadMonad (MON) $ 0.036107
  • coinbase-wrapped-staked-ethCoinbase Wrapped Staked ETH (CBETH) $ 3,361.20
  • justJUST (JST) $ 0.039142
  • binance-peg-dogecoinBinance-Peg Dogecoin (DOGE) $ 0.150770
  • dogwifcoindogwifhat (WIF) $ 0.387190
  • lorenzo-wrapped-bitcoinLorenzo Wrapped Bitcoin (ENZOBTC) $ 90,454.00
  • flowFlow (FLOW) $ 0.236814
  • apenftAINFT (NFT) $ 0.00000039
  • benqi-liquid-staked-avaxBENQI Liquid Staked AVAX (SAVAX) $ 18.52
  • bitcoin-avalanche-bridged-btc-bAvalanche Bridged BTC (Avalanche) (BTC.B) $ 91,446.00
  • jasmycoinJasmyCoin (JASMY) $ 0.007474
  • galaGALA (GALA) $ 0.007896
  • ether-fi-staked-ethether.fi Staked ETH (EETH) $ 3,036.68
  • theta-tokenTheta Network (THETA) $ 0.364582
  • olympusOlympus (OHM) $ 22.23
  • gnosisGnosis (GNO) $ 135.02
  • merlin-chainMerlin Chain (MERL) $ 0.322803
Bitcoin

Profiting from disaster: Firms look to capitalize on Bybit hack

By admin
0 71

Profiting from disaster: Firms look to capitalize on Bybit hack

This is a segment from the 0xResearch newsletter. To read full editions, subscribe.

The Bybit $1.4 billion exploit triggered a predictable response: an influx of security and infrastructure firms each claiming that their technology could have prevented the attack.

The FBI has confirmed the hack was the work of North Korea’s Lazarus Group, which targeted Bybit’s Safe{Wallet} setup. A key detail disclosed yesterday is that it was a Safe developer’s machine — and not Bybit’s infrastructure — that was compromised, allowing attackers to inject malicious code into the transaction signing interface.

The deception resulted in Bybit’s signers blindly approving a fraudulent transaction, draining its largest Ethereum wallet.

Security researcher Taylor Monahan emphasized that this attack was entirely predictable given the crypto industry’s long-standing blind-signing problem. As she noted: “There is NO org in this space that is taking security seriously enough to protect against a dedicated, persistent, motivated adversary like Lazarus.”

Key findings include:

Safe{Wallet}’s UI was compromised — Bybit’s interface showed an expected transaction, but signers unknowingly approved a completely different transaction.

Blind signing on Ledger devices was the final failure — Bybit’s final signer, Ben Zhou, admitted he didn’t verify the transaction fully on his Ledger hardware wallet before approving it.

The attack targeted human oversight — Lazarus didn’t need to exploit smart contracts or break cryptographic security; it simply took advantage of trust in the UI.

Former Binance CEO CZ criticized Safe’s response, raising critical questions like why did a single developer’s machine have access to Bybit’s transaction process? How did Ledger’s signing process fail to prevent this? And what security lessons should the industry take away?

These are all good questions which will take some time to fully address.

A wave of companies rushes in

With every high-profile hack, companies flood the space claiming their product would have stopped it. Some address the specific issue — secure transaction verification — while others hijack the narrative for marketing.

  • OISY (Dfinity-backed onchain wallet)

Claim: Browser extensions and private key management are the weak links. OISY eliminates them by running fully onchain.

Reality: The attack had nothing to do with browser extensions or private key exposure — it was blind signing. OISY’s architecture might be novel, but it doesn’t solve the problem that caused this hack.

  • Impossible Cloud Network (decentralized cloud storage)

Claim: Centralized cloud services (like AWS) were the root cause of the exploit.

Reality: While decentralized cloud storage can reduce attack surfaces, Bybit wasn’t hacked through AWS. The issue was Safe’s UI manipulation and blind signing — not the particular choice of cloud hosting provider.

  • Cubist (hardware-backed signing security)

Claim: Enforcing strict signing policies, such as pre-approved addresses, governance delays and multi-factor authentication would have blocked this exploit.

Reality: This is actually relevant. If Bybit had enforced signing restrictions, Lazarus wouldn’t have been able to trick it into blind-signing a malicious transaction.

  • Fireblocks (MPC-based security and transaction policy enforcement)

Claim: Bybit’s security model was fundamentally flawed — Ledger’s blind-signing requirement combined with Safe’s UI vulnerability left it open to attack. Fireblocks argues that its MPC-based infrastructure, policy engines and real-time transaction verification would have mitigated this risk.

Reality: This claim is one of the more valid responses. Fireblocks’ policy enforcement would have prevented arbitrary approvals, requiring predefined transaction rules that block unexpected transactions — even if signers get tricked.

However, there’s also a risk, as Taylor Monahan put it in her characteristically sassy style. “Fancy multisig, semi-custodial, MPC, blah blah blah product…make your attack surface LARGER, not smaller.”

The real lesson is UI trust is the biggest security hole. Bybit’s attack wasn’t about smart contracts, decentralization or private key security — it was about blind trust in a compromised UI.

  • Strict transaction signing policies
  • Mandatory transaction verification on hardware wallets
  • Governance delays and multi-layer approvals

Source

admin 15506 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.