Blackwater International analyzed the July 2024 WazirX cyber heist, in which attackers stole more than $240 million from a multi-sig wallet used by the Indian cryptocurrency exchange. The source says the attackers exploited a discrepancy between the transaction contents and what Liminal Custody's interface displayed, allowing them to alter the transaction payload and seize control of the wallet. It reports early industry speculation about Lazarus involvement and later says Blackwater attributed the attack to multiple North Korean groups, including Lazarus, BlueNoroff, and APT38. The article also covers WazirX's withdrawal freeze, its disputed socialized-loss proposal, Mandiant's preliminary review of signer laptops, and the filing of an FIR with Delhi Police.