2023-11

HECO Bridge

HECO Bridge was exploited when the attacker used the Heco Bridge Operator to call withdrawToken and remove ETH and ERC-20 assets, then swapped tokens for ETH and distributed proceeds across multiple wallets. Linked blockchain-intelligence reporting attrib…

🇸🇬 Singapore

2023-11

CyberLink

Microsoft Threat Intelligence identified a supply chain attack by the North Korean group Diamond Sleet (ZINC) involving a compromised CyberLink application installer. The installer, signed with a valid CyberLink certificate, was modified to include malici…

🇹🇼 Taiwan

2023-11

UnoRe DAO

On November 14, 2023 at approximately 15:49 UTC, Uno Re suffered a deployer private-key compromise that let an attacker transfer contract ownership, alter the claims assessor role, and drain SSIP, SSRP, and Rewarder contracts. Uno Re reported losses of 32…

🇪🇪 Estonia

2023-11

Poloniex

Poloniex hot wallets on Ethereum, Tron, and Bitcoin were compromised on 10 November 2023, causing losses estimated between roughly $114 million and $132 million and triggering reimbursement, asset-freezing, and bounty measures by the exchange. CertiK desc…

🇺🇸 United States

2023-10

Maverick Founder

Mark Cuban's hot wallet was drained of nearly $900,000 in cryptocurrency after a security breach affecting the billionaire investor and Dallas Mavericks owner. A later ZachXBT laundering analysis included Maverick Founder among 25 cryptocurrency hacks fro…

🇸🇬 Singapore

2023-10

Fantom Foundation

Fantom Foundation suffered a hot-wallet hack in mid-October 2023 that affected assets held by the project and prompted crypto-security analysis of the related wallet transactions. Linked evidence describes the incident as a reminder of hot-wallet and digi…

🇰🇾 Cayman Islands

2023-09

Mixin Network

Mixin Network disclosed that hackers attacked the database of its cloud service provider in the early morning of September 23, 2023 Hong Kong time, causing losses of mainnet assets and prompting a temporary suspension of deposits and withdrawals. Follow-o…

🇭🇰 Hong Kong

2023-09

CoinEx

CoinEx detected anomalous withdrawals from multiple exchange hot-wallet addresses on September 12, 2023 and suspended deposits and withdrawals while investigating unauthorized transactions involving assets including ETH, TRON, MATIC, BTC, XRP, BCH and SOL…

🇺🇸 United States

2023-09

Stake.com

Stake.com was robbed on or about September 4, 2023 after funds were taken from Stake-controlled Ethereum, Binance Smart Chain and Polygon addresses, with FBI attribution assigning the theft to DPRK Lazarus Group actors also known as APT38. TRM described s…

🇦🇺 Australia

2023-08

Coinshfit

Coinshfit was included in ZachXBT's analysis of 25 cryptocurrency hacks from August 2020 to October 2023 that were traced to Lazarus Group, also described as Bluenoroff or APT38. The linked laundering evidence maps stolen funds from the broader incident s…

🇺🇸 United States

2023-08

Steadefi

Steadefi lost about $1.14 million after its deployer address was compromised, allowing the attacker to take ownership of vault contracts on Arbitrum and Avalanche, abuse owner-only functions, drain available lending-vault funds, pause farm contracts and b…

🇻🇬 Virgin Islands, British

2023-07

Alphapo

Alphapo, a centralized cryptocurrency payment provider serving e-commerce subscription services, gaming sites and online businesses, suffered a hot-wallet compromise later estimated at more than $60 million. On-chain researchers and subsequent FBI-linked …

🇻🇨 Saint Vincent and the Grenadines

2023-07

CoinsPaid

CoinsPaid was hit by a July 2023 cryptocurrency theft that the company and multiple blockchain-analysis reports linked to Lazarus Group activity, with later reporting describing laundering through cross-chain bridges, token swaps, and mixers such as Sinba…

🇪🇪 Estonia

2023-06

JumpCloud

JumpCloud disclosed a targeted compromise of internal infrastructure after a spear-phishing campaign, with anomalous activity in its commands framework affecting a small set of customers and forcing credential rotation, infrastructure rebuilds, and custom…

🇺🇸 United States

2023-06

Atomic Wallet

Atomic Wallet users suffered a major cryptocurrency theft across desktop and mobile wallets, with linked reporting tracking stolen funds through laundering patterns associated with North Korea’s Lazarus Group and the Sinbad mixer. Elliptic attributed the …

🇪🇪 Estonia