Connect with us

Hi, what are you looking for?

Economy

Ozys’ Former Chief Security Officer Allegedly Weakened Security of Network Weeks Before $81.5M Hack

Source: Pixabay

South Korean blockchain network Ozys has made a damning revelation in the aftermath of its January 1, 2024 platform hack.

In a January 25 Medium blog post, Ozys CEO Jinhan Choi clarified that the breach was not a result of overlooked security measures on their part. Rather, it was a deliberate act by their former Chief Information Security Officer (CISO), who intentionally weakened the firewall security of the blockchain protocol.

Official Statement of Ozys Regarding ‘Orbit Bridge Exploit’

Please access the full statement below:

EN: https://t.co/t0UGI6oPRE
KR: https://t.co/9PLrtCxuDR pic.twitter.com/l6dYBFwNce

— Orbit Chain (@Orbit_Chain) January 25, 2024

According to Choi, the undisclosed individual altered the network’s firewall policies on November 20, just two days before submitting a voluntary resignation request. The CISO then left the company on December 6, 2023, without any form of communication, leaving the team unaware of the security changes.

The anomaly was discovered on January 10 when approximately $81.5 million of investors’ digital funds mysteriously disappeared. The cyber attack, which was spread across six specific incidents, led to the transfer of $50 million in stablecoin (comprising $30 million in USDT, $10 million in MakerDAO’s DAI, and $10 million in USDC).

Additionally, 231 wrapped Bitcoins (wBTCs) valued at around $10 million and 9,500 Ether tokens worth $21.5 million were pilfered from the Orbit Bridge Chain.

These assets were converted to ETH and DAI before being transferred to eight crypto wallets. Currently, Ozys reports that the digital funds remain dormant in these wallets.

Ozys is actively collaborating with law enforcement agencies such as the Korea Internet Security Agency (KISA), National Police Agency (NPA), and others to address the issue. Legal action is also being pursued against the former CISO.

Furthermore, the cross-chain bridging network has contracted blockchain security firm Theori to audit its smart contracts code to prevent a recurrence of such incidents.

Lazarus Group Likely Involved


Another astonishing revelation shared by Choi involves the potential role the infamous North Korea-backed cyberthreat team Lazarus Group had to play in the company’s ordeal.

According to the Medium blog post, the state-backed cybercriminal group might be involved due to the apparent similarities surrounding the attack methodology used to breach the cross-chain service.

In light of this revelation, the Ozys team has notified the Korean National Intelligence Service (NIS) and the NPA’s Cyber Terror Investigation Unit to substantiate their fears.

The Lazarus Group has a track record of orchestrating various malicious campaigns against the burgeoning crypto ecosystem. Notably, in 2022, a Chainalysis report revealed that the Lazarus Group managed to abscond with $1.7 billion in stolen digital assets.

In 2023, these hackers exhibited no signs of slowing down in their malicious activities, having plundered a whopping $1 billion from the industry’s overall annual loss of $1.7 billion.

Funds stolen from crypto platforms in 2023 fell 54.3% to $1.7 billion. This is mostly due to a drop in DeFi hacking, which drove the increase in stolen crypto that we saw in 2021 and 2022. However, there still were several large DeFi hacks in 2023. pic.twitter.com/s8Ix982HR2

— Chainalysis (@chainalysis) January 24, 2024

In total, the Lazarus Group launched 20 malicious attacks and stole $428.8 million from DeFi protocols, $150 million from centralized crypto service operators, and $330.9 million from crypto exchanges in the span of a year.

The post Ozys’ Former Chief Security Officer Allegedly Weakened Security of Network Weeks Before $81.5M Hack appeared first on Cryptonews.

Your information is secure and your privacy is protected. By opting in you agree to receive emails from us. Remember that you can opt-out any time, we hate spam too!

Latest

Economy

Get your daily, bite-sized digest of blockchain and crypto news – investigating the stories flying under the radar of today’s news. In today’s crypto...

Economy

The amount of Bitcoin (BTC) held on Coinbase has plummeted by almost $1 billion worth of assets as whales move their holdings. New data...

Economy

Mumbai, the bustling financial hub of India, has introduced a metaverse initiative aimed at showcasing its latest and upcoming city-wide infrastructure megaprojects. Dubbed the Mumbai...

Economy

BlackRock, the world’s largest asset manager, has intensified its media advertising campaign for its recently launched iShares spot Bitcoin exchange-traded fund (ETF), framing the...

Economy

In an exclusive, gaming-focused interview with Cryptonews, the BLOCKLORDS game CEO David Johansson talked about the indestructible link between crypto and gaming. He told...

Economy

A recent study by a team of researchers from Europe and Asia explored the possibility of predicting positive outcomes in crypto market trading using...

You May Also Like

Financial Advisors

[#item_full_content]

Financial Advisors

[#item_full_content]

Financial Advisors

The humongous outbreak of the dreaded coronavirus has brought about a groundbreaking change in what the world perceived as ‘normal’. With an estimated 280,391,189...

Disclaimer: Respect Investment.com, its managers, its employees, and assigns (collectively "The Company") do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.

Copyright © 2024 Respect Investment. All Rights Reserved.