These attacks frequently compromise private keys, suggesting potential prior breaches at the affected companies. CertiK conducted a series of blockchain investigations that helped reveal on-chain connections between the exploits on Atomic Wallet, Alphapo, CoinsPaid, Stake.com, and CoinEx.
CertiK has revealed transactions connecting the breaches at Atomic Wallet, Alphapo, CoinsPaid, Stake.com, and CoinEx that show Lazarus Group’s involvement in these exploits.
The infamous Lazarus Group, supported by North Korea, is still causing chaos in the Web3 community. Following their well-known exploit of the Ronin bridge in 2022, which resulted in a loss of $650 million, the group has been responsible for multiple cyber-attacks this year.
These incidents have led to a total loss of $291.3 million for the Web3 community across the five major incidents. This figure represents 77.7% of total losses attributed to such breaches. The exploits of Stake.com and CoinEx alone accounted for 78% of the losses in September.
A clear pattern emerged, connecting these breaches to the Lazarus Group. Specifics of the violations also reveal that each attack exploited vulnerabilities unique to the protocols and systems of each entity.
We’re here to listen to your thoughts. Join the discussion!