{"id":18207,"date":"2025-03-20T09:03:07","date_gmt":"2025-03-20T09:03:07","guid":{"rendered":"https:\/\/dogewisperer.com\/?p=18207"},"modified":"2025-03-20T09:03:07","modified_gmt":"2025-03-20T09:03:07","slug":"bybit-89-of-stolen-1-4b-crypto-still-traceable-post-hack","status":"publish","type":"post","link":"https:\/\/dogewisperer.com\/?p=18207","title":{"rendered":"Bybit: 89% of stolen $1.4B crypto still traceable post-hack"},"content":{"rendered":"
\n

<\/p>\n<\/p>\n

\"Bybit:<\/p>\n

The lion\u2019s share of the hacked Bybit funds is still traceable after the historic cybertheft, as blockchain investigators continue their efforts to freeze and recover these funds.<\/p>\n

The crypto industry was rocked by the largest hack in history<\/a> on Feb. 21, when Bybit lost over $1.4 billion<\/a> in liquid-staked Ether (stETH), Mantle Staked ETH (mETH) and other digital assets.<\/p>\n

Blockchain security firms, including Arkham Intelligence, have identified North Korea\u2019s Lazarus Group<\/a> as the likely culprit behind the Bybit exploit, as the attackers have continued swapping the funds in an effort to make them untraceable.<\/p>\n

Despite the Lazarus Group\u2019s efforts, over 88% of the stolen $1.4 billion remains traceable, according to Ben Zhou, the co-founder and CEO of Bybit exchange.<\/p>\n

The CEO wrote in a March 20 X post<\/a>:<\/p>\n

\u201cTotal hacked funds of USD 1.4bn around 500k ETH. 88.87% remain traceable, 7.59% have gone dark, 3.54% have been frozen.\u201d<\/p><\/blockquote>\n

\u201c86.29% (440,091 ETH, ~$1.23B) have been converted into 12,836 BTC\u00a0 across 9,117 wallets (Average 1.41 BTC each),\u201d said the CEO, adding that the funds were mainly funneled through Bitcoin (BTC<\/a>) mixers including Wasbi, CryptoMixer, Railgun and Tornado Cash.<\/p>\n

\"Bybit:
\n

Source: <\/em>Ben Zhou<\/em><\/a><\/p>\n<\/figcaption><\/figure>\n

The CEO\u2019s update comes nearly a month after the exchange was hacked. It took the Lazarus Group 10 days to launder<\/a> 100% of the stolen Bybit funds through the decentralized crosschain protocol THORChain, Cointelegraph reported on March 4.<\/p>\n

Still, blockchain security experts are hopeful that a portion of these funds can be frozen and recovered by Bybit.<\/p>\n

Related: <\/strong><\/em>Can Ether recover above $3K after Bybit\u2019s massive $1.4B hack?<\/strong><\/em><\/a><\/p>\n

Bybit paid $2.2M for Lazarus \u201cbounty hunters\u201d<\/h2>\n

The crypto industry needs more blockchain \u201cbounty hunters\u201d and white hat, or ethical hackers, to combat the growing illicit activity from North Korean actors.<\/p>\n

Decoding transaction patterns through cryptocurrency mixers remains the biggest challenge in tracing these funds, Bybit\u2019s CEO wrote, adding:<\/p>\n

\u201cIn the past 30 days, 5012 bounty reports were received of which 63 were valid bounty reports. We welcome more reports, we need more bounty hunters that can decode mixers as we need a lot of help there down the road.\u201d<\/p><\/blockquote>\n

\"Bybit:
\n

Source: <\/em>Lazarusbounty<\/em><\/a><\/p>\n<\/figcaption><\/figure>\n

Bybit has awarded over $2.2 million worth of funds to 12 bounty hunters for relevant information that may lead to the freezing of the funds. The exchange is offering 10% of the recovered funds as a bounty for white hat hackers and investigators.<\/p>\n

Related: <\/strong><\/em>Bybit exploit exposes security flaws in centralized crypto exchanges<\/strong><\/em><\/a><\/p>\n

The Bybit attack highlights that even centralized exchanges with strong security measures remain vulnerable to sophisticated cyberattacks<\/a>, analysts say.<\/p>\n

\u201cThis incident is another stark reminder that even the strongest security measures can be undone by human error,\u201d Lucien Bourdon, an analyst at Trezor, told Cointelegraph.<\/p>\n

Bourdon explained that attackers used a sophisticated social engineering technique, deceiving signers into approving a malicious transaction that drained crypto from one of Bybit’s cold wallets.<\/p>\n

The Bybit hack is more than twice the size of the $600 million Poly Network hack<\/a> in August 2021, making it the largest crypto exchange breach to date.<\/p>\n