Safe Wallet Reports $1.4B Bybit Hack Linked to North Korea

A North Korean-linked group hacked Bybit, stealing $1.4B by bypassing MFA and hijacking AWS session tokens.

Photo of Aurelien Sage Aurelien Sage Follow on X Send an email March 7, 2025 - 3:05 AM
15 1 minute read
Safe Wallet Reports $1.4B Bybit Hack
Exchange News
  • The attack on Bybit resulted in a $1.4 billion loss.
  • The TraderTraitor group bypassed MFA using a hijacked AWS session token.
  • The breach occurred through a compromised developer’s notebook.

The crypto exchange Bybit has suffered a massive security breach, losing more than $1.4 billion in an attack linked to the North Korean hacking group TraderTraitor (UNC4899). According to a post by Safe{Wallet}, the attackers managed to bypass multi-factor authentication (MFA) and gain access by hijacking an AWS session token.

How the Attack Happened

The attackers infiltrated Bybit’s systems by first compromising a developer’s notebook. By exploiting security vulnerabilities, they managed to gain unauthorized access and steal an AWS session token. This token allowed them to bypass MFA and infiltrate sensitive systems, leading to the theft of a staggering $1.4 billion in crypto assets.

This method of attack highlights the increasing sophistication of cybercriminals, especially those affiliated with state-backed groups like TraderTraitor. By leveraging social engineering tactics and exploiting security weaknesses in developer environments, they can breach even well-protected platforms.

Implications for Crypto Security

The Bybit hack is one of the largest crypto exchange breaches in history and serves as a stark reminder of the vulnerabilities that exist in centralized platforms. Security experts emphasize the importance of strengthening authentication mechanisms, conducting frequent security audits, and ensuring that developers follow best practices to prevent similar incidents in the future.

Bybit has yet to release a full statement on the breach, but industry insiders are urging exchanges to adopt more stringent security measures to safeguard user funds.

Disclaimer: The content on CoinoMedia is for informational purposes only and does not constitute financial, investment, or legal advice. Cryptocurrency investments carry risks, and readers should conduct their own research before making any decisions. CoinoMedia is not responsible for any losses or actions taken based on the information provided.
Tags
Photo of Aurelien Sage Aurelien Sage Follow on X Send an email March 7, 2025 - 3:05 AM
15 1 minute read
Photo of Aurelien Sage

Aurelien Sage

Aurelien Sage is a blockchain enthusiast and writer, crafting insightful articles on decentralized technologies, Web3, and the future of finance. His work simplifies complex concepts, empowering readers to navigate the evolving crypto landscape with confidence.

Related Articles

Solana ETF Buzz Hits 70%, Pi Targets $5, & BlockDAG’s Live Dev Podcasts Redefine Presale Trust

Solana ETF Buzz Hits 70%, Pi Targets $5, & BlockDAG’s Live Dev Podcasts Redefine Presale Trust

May 5, 2025 - 9:00 PM
CZ Denies Ties With Boop Founder Amid Insider Claims

CZ Denies Ties With Boop Founder Amid Insider Claims

May 5, 2025 - 8:45 PM
Troller Cat presale, Best Crypto to Explode in 2025, meme coin ROI 2025, $TCAT token, join Troller Cat now, crypto staking 69% APY, crypto presale live, play-to-earn meme coin, Troller Cat game utility, crypto news 2025.

Notcoin and Goatseus Maximus Tumble, But Troller Cat Presale Ignites Buzz as the Best Crypto to Explode in 2025

May 5, 2025 - 6:30 PM
Tokenization Could Transform Finance, Says SEC’s Peirce

Tokenization Could Transform Finance, Says SEC’s Peirce

May 5, 2025 - 6:22 PM
Back to top button