Additionally, the report revealed that the attackers used ExpressVPN to mask their origins while conducting operations. It also highlighted that the attack resembles previous incidents involving UNC4899, a threat actor associated with TraderTraitor, a criminal collective allegedly tied to DPRK.

Quote

Name

Types

Quote

Sources

Safe’s internal investigation reveals developer’s laptop breach led to Bybit hack

Referenced by

SafeWallet’s investigation concluded that the Bybit hack was conducted by North Korean state-sponsored cyber actors associated with the Lazarus Group

Crypto news

Claim

​

Referenced by

SafeWallet’s investigation concluded that the Bybit hack was conducted by North Korean state-sponsored cyber actors associated with the Lazarus Group