Lazarus Group Exploits Tornado Cash to Launder $12M Worth of Stolen Ethereum
In a recent development, North Korean hackers associated with the notorious Lazarus Group have exploited the coin-mixing service Tornado Cash to launder approximately $12 million worth of stolen Ethereum (ETH) within the past 24 hours.
$100M Crypto Heist And Ethereum Laundering Uncovered
The Lazarus Group, a well-known cybercrime organization believed to be backed by the North Korean regime, has a long history of conducting high-profile hacking campaigns. In November 2023, the group allegedly orchestrated a major heist targeting the HTX crypto exchange and its cross-chain bridge, resulting in the theft of $100 million in various cryptocurrencies, including Ethereum.
Evidence gathered by blockchain analytics firm Elliptic and other experts pointed to the involvement of the Lazarus Group based on their modus operandi and subsequent movement of the stolen funds.
The investigation revealed that the hackers quickly converted the stolen tokens into Ethereum through decentralized exchanges (DEXs), following their usual pattern of crypto-laundering.
These illicitly acquired Ethereum funds remained dormant until recently when the hackers began funneling them through Tornado Cash. Tornado Cash is a decentralized, smart contract-based mixer previously sanctioned by the US Treasury for its association with laundering $455 million from Lazarus Group crypto hacks.
However, Tornado Cash’s decentralized nature has prevented it from being shut down like centralized mixers such as Sinbad.io.
The Last Resort For Lazarus Group
In response to sanctions imposed on Tornado Cash, the Lazarus Group shifted its focus to using cross-chain bridges and the Bitcoin-based mixer Sinbad.io as an alternative. However, in November 2023, Sinbad.io itself was seized by US authorities, eliminating another commingling option for the hackers. As a result, the group appears to have returned to Tornado Cash, using its decentralized architecture and resistance to raids to launder funds at scale and obscure its transaction trail.
Elliptic suggests that the resurgence of the Lazarus Group’s reliance on Tornado Cash can be attributed to the diminishing availability of large-scale mixers due to law enforcement operations targeting services like Sinbad.io and Blender.io.
With fewer viable alternatives, the group has capitalized on Tornado Cash’s continued operation despite sanctions, exploiting smart contracts’ security and decentralized nature on blockchain networks.
Ethereum Price Update
As of the time of writing, Ethereum is currently trading at $3,870. Earlier this week, it reached a two-year high of $4,084; however, it failed to sustain consolidation above this level. Consequently, over the past 24 hours, ETH has experienced a 2.5% decline in price.
By
By
By
By