A whopping 41,000 ETH stolen by the North Korean hackers Lazarus Group are currently being deposited on crypto exchanges.
According to an analysis of the token movements shared online, the ETH was sent through the anonymity system Railgun before being consolidated in wallets and sent to three major crypto exchanges, possibly to be exchanged for fiat currency.
The 41,000 ETH now on the move is worth some $64.2m by today’s exchange rate, and originates from the infamous Harmony Bridge hack in June of 2022. The bridge was used to transfer tokens between the Harmony network and Ethereum, BNB Chain, and Bitcoin.
Details about this week’s token movements were shared on Twitter by the on-chain analyst ZachXBT, who said Lazarus Group has had “a very busy weekend” moving funds:
In a follow-up tweet, ZachXBT also linked to the website Chainabuse.com where he shared a full list of the roughly 400 Ethereum addresses he claims where involved in the operation.
Meanwhile, Binance CEO Changpeng Zhao, better known as CZ, also took to Twitter on Monday to comment on the situation.
According to CZ, the hackers did not use Binance as one of their exchanges this time, but instead the competing exchange Huobi. Huobi then received help from Binance to freeze the hacker’s accounts, he said.
CZ also said that a combined 124 BTC ($2.6m) have now been recovered from the hackers, which indicates that at least some of the hacker’s ETH has been converted to BTC.
“We detected Harmony One hacker fund movement. They previously tried to launder through Binance and we froze his accounts. This time he used Huobi. We assisted Huobi team to freeze his accounts. Together, 124 BTC have been recovered,” CZ wrote.
Huobi has not commented on the situation other than
Read more on cryptonews.com