保險箱確認完整的基礎設施重置後bybit hack

Safe在2025年2月21日的網絡攻擊之後，確認了全面的基礎設施重置，這損害了Bybit的系統。

A full infrastructure reset has been confirmed by Safe following the recent cyberattack on Bybit on February 21, 2025. The attack, which was attributed to the TraderTraitor group, which has ties to North Korea, has sparked serious concerns regarding the vulnerability of both centralized and decentralized crypto platforms.

在2025年2月21日在BYBIT上的網絡攻擊之後，Safe確認了一個完整的基礎設施重置。這次襲擊歸因於與朝鮮有聯繫的TraderTraitor Group，引發了人們對集中和不良的加密平台的脆弱性的嚴重關注。

Recently, Bybit fell victim to a significant cyberattack that resulted in the theft of a large sum of cryptocurrency from user accounts. The incident is being investigated by cybersecurity firm Mandiant, which has confirmed the involvement of the TraderTraitor group.

最近，拜比特（Bybit）成為一場重要的網絡攻擊的受害者，導致從用戶帳戶盜竊了大量加密貨幣。該事件正在由網絡安全公司Mandiant進行調查，該公司已證實了TraderTraitor Group的參與。

The crypto platform has been the subject of a recent cyberattack, which is now being investigated.

加密平台一直是最近的網絡攻擊的主題，該網絡攻擊現已正在調查中。

The incident, which occurred on February 21, 2025, saw the TraderTraitor group, which is known for its links to North Korea, successfully siphon funds from Bybit’s system.

該事件發生於2025年2月21日，以與朝鮮的聯繫而聞名的TraderTraitor Group成功地從Bybit Systems獲得了資金。

The attack, which is still under investigation, is believed to have been carried out in a sophisticated manner, with the attackers able to hijack AWS session tokens. This maneuver allowed them to bypass multi-factor authentication controls, granting them illicit access to Bybit’s system.

據信仍在調查的襲擊以復雜的方式進行，攻擊者能夠劫持AWS會議令牌。這種操作使他們能夠繞過多因素身份驗證控件，從而允許他們非法訪問BYBIT系統。

The attack on Bybit is the latest in a series of high-profile cyberattacks on cryptocurrency platforms in recent months. In December 2024, Axie Infinity was the target of a major hack that saw over $97 million in cryptocurrency stolen.

對Bybit的攻擊是最近幾個月在加密貨幣平台上一系列備受矚目的網絡攻擊中的最新攻擊。 2024年12月，Axie Infinity是一個重大黑客的目標，該目標被盜了超過9700萬美元。

As part of its response to the Bybit hack, Safe has announced the initiation of a comprehensive security overhaul. The structure of this effort will include the rotation of all credentials, resetting of clusters, updating of builds, and redeployment of container images. These measures are designed to fortify Safe's security and restore its services with more robust protections.

作為對Bybit Hack的回應的一部分，Safe宣布啟動全面的安全大修。這項工作的結構將包括所有憑據的旋轉，集群重置，構建更新以及對容器圖像的重新部署。這些措施旨在通過更強大的保護措施來加強安全的安全性並恢復其服務。

In addition to resetting infrastructure, Safe has also undertaken steps to enhance its malicious transaction detection systems. The platform has partnered with Blockaid to improve monitoring systems, which will now offer more advanced detection capabilities. This collaboration aims to prevent any transactions that could be used to harm others and protect users' funds from future risks.

除了重置基礎設施外，Safe還採取了步驟來增強其惡意交易檢測系統。該平台已與Blockaid合作，以改善監視系統，現在將提供更高級的檢測功能。這項合作旨在防止任何可用於傷害他人並保護用戶資金免受未來風險的交易。

Safe has also announced an increase in real-time threat detection across all layers of its stack. By bolstering its monitoring systems, the platform aims to improve visibility into potential security threats and reduce response times. These steps are expected to increase the platform's overall resilience against cyberattacks.

Safe還宣布，其堆棧的所有層中實時威脅檢測有所增加。通過加強其監視系統，該平台旨在提高對潛在安全威脅的可見性並減少響應時間。這些步驟有望提高平台對網絡攻擊的總體彈性。

Following the Bybit hack, the team at Safe has been working closely with cybersecurity firm Mandiant to investigate the attack.

在Bybit Hack之後，Safe的團隊一直與網絡安全公司Mandiant緊密合作，以調查襲擊。

The scope of the recent Bybit hack is substantial, with reports indicating that the Lazarus group, a North Korean hacking group, is still laundering the stolen cryptocurrency. According to blockchain research firm Arkham, the group has now fully laundered the funds.

最近的Bybit Hack的範圍很大，有報導表明，Lazarus集團是一個朝鮮黑客組織，仍在洗錢。根據區塊鏈研究公司Arkham的說法，該集團現在已經完全洗了資金。

As part of its efforts to strengthen external access and enhance user security, Safe has implemented several measures. The platform has temporarily limited external access to its Transaction Service and introduced stricter firewall rules on externally facing services.

作為加強外部訪問並增強用戶安全性的努力的一部分，Safe已實施了多項措施。該平台暫時限制了對其交易服務的外部訪問，並引入了有關外部面臨的服務的更嚴格的防火牆規則。

In a related development, Safe has announced the temporary disablement of native hardware wallet signing. This decision was taken due to the potential risks associated with hardware dependencies, which are currently being investigated. While native hardware wallet support has been disabled, users can still access their wallets via WalletConnect.

在相關的開發中，Safe宣布了本地硬件錢包簽名的暫時殘疾。該決定是由於目前正在研究的硬件依賴性帶來的潛在風險。儘管已禁用了本機硬件錢包支持，但用戶仍然可以通過WalletConnect訪問其錢包。

To further bolster security, Safe has cleared all pending queued transactions from its databases. This precautionary step is being taken to eliminate the possibility of human error and reduce the risk of any transactions being compromised during the recovery process.

為了進一步加強安全性，Safe已清除了其數據庫中所有等待的排隊交易。正在採取這種預防性步驟，以消除人類錯誤的可能性，並降低在恢復過程中受到損害的任何交易的風險。

Furthermore, Safe is introducing a third-party verification tool, known as "Safe Utils," which will allow users to independently verify transaction hashes. This move is designed to provide an additional layer of transparency and accountability in transaction processing.

此外，Safe正在引入第三方驗證工具，稱為“安全UTILS”，該工具將允許用戶獨立驗證交易哈希。此舉旨在在交易處理中提供額外的透明度和問責制。