WazirX 駭客攻擊：與北韓有關的 Lazarus 集團利用交易所竊取 2.3 億美元的加密貨幣

總部位於印度的加密貨幣交易巨頭 WazirX 的一個多重簽名錢包遭遇安全漏洞，區塊鏈安全公司和專家稱該漏洞似乎是由與北韓有關的駭客所為，該公司已被利用超過 2.3 億美元。

Cryptocurrency exchange WazirX has been exploited for over $230 million after one of its multisig wallets suffered a security breach that blockchain security firms and experts said appears to have been carried out by North Korea-linked hackers.

加密貨幣交易所 WazirX 的一個多重簽名錢包遭遇安全漏洞，區塊鏈安全公司和專家稱該漏洞似乎是由與北韓有關的駭客所為，該交易所已被利用超過 2.3 億美元。

Multiple blockchain security and analysis firms flagged the exploit that affected user funds Thursday, revealing that most of the cryptocurrencies stolen were in popular memecoin Shiba Inu ($SHIB).

週四，多家區塊鏈安全和分析公司指出了影響用戶資金的漏洞，並透露大部分被盜的加密貨幣都是流行的 memecoin Shiba Inu ($SHIB)。

WazirX confirmed the attack, publishing preliminary findings of an investigation "to clarify the situation."

WazirX 證實了這次攻擊，並發布了初步調查結果「以澄清情況」。

At WazirX, our commitment to transparency and community welfare is paramount. There was a cyber attack on one of our multisig wallets. Below are the preliminary findings to clarify the situation:» Incident Overview: A cyber attack occurred in one of our multisig wallets…

在 WazirX，我們對透明度和社區福祉的承諾至關重要。我們的一個多重簽名錢包遭到了網路攻擊。以下是澄清情況的初步調查結果：» 事件概述：我們的一個多重簽名錢包發生了網路攻擊…

The exchange, which describes itself as the largest crypto exchange in India, said it has robust security features and the cyberattack was "a force majeure event beyond our control." It said it will continue to locate and recover the pilfered funds and has reached out to "the best resources to help us in this endeavor."

該交易所自稱是印度最大的加密貨幣交易所，並表示其具有強大的安全功能，網路攻擊是「我們無法控制的不可抗力事件」。該公司表示將繼續尋找並追回被盜資金，並已尋求「最好的資源來幫助我們實現這一目標」。

Leading blockchain analytics firm Arkham Intelligence revealed late Thursday that the $102.1 million in stolen $SHIB "has now been fully sold off by the attacker."

領先的區塊鏈分析公司 Arkham Intelligence 週四晚間透露，被盜的 1.021 億美元的 $SHIB「現已被攻擊者全部出售」。

UPDATE: The WazirX Hacker is out of SHIB.$102.1M SHIB was stolen this morning from WazirX and has now been fully sold off by the attacker. pic.twitter.com/sjCSZJhdIv

更新：WazirX 駭客已退出 SHIB。 pic.twitter.com/sjCSZJhdIv

Following news of the dump, the token, which is the Top 2 memecoin on CoinGecko's ranked meme tokens, slumped by over 8%.

在拋售消息傳出後，該代幣（CoinGecko 排名第二的迷因代幣）暴跌超過 8%。

Prominent crypto sleuth ZachXBT, who identified the KYC (know your customer) deposit address used by the exploiter to receive the stolen funds, revealed that upon tracing the hacker's movements, he determined that "the WazirX hack has the potential markings of a Lazarus Group attack (yet again)."

著名加密貨幣偵探 ZachXBT 識別了利用者用於接收被盜資金的 KYC（了解你的客戶）存款地址，他透露，在追踪黑客的行動後，他確定“WazirX 黑客攻擊具有 Lazarus Group 攻擊的潛在特徵” （再次）。

6/ This is where my tracing ends as the BTC appears to come from an unknown service making it difficult to trace. All I can say is the WazirX hack has the potential markings of a Lazarus Group attack (yet again) Hopefully the WazirX team will be transparent with their… https://t.co/IjzlI76TRQ

6/ 我的追蹤到此結束，因為 BTC 似乎來自未知服務，因此很難追蹤。我只能說，WazirX 駭客攻擊有潛在的拉撒路集團攻擊的痕跡（再次）希望 WazirX 團隊能夠對其保持透明...... https://t.co/IjzlI76TRQ

Blockchain intelligence firm Elliptic said the exploit was a "North Korea-linked breach." It added that more than 200 different digital assets were stolen, including some $52.6 million worth of Ether ($ETH), the native cryptocurrency of the Ethereum blockchain, and around $7.6 million of the $PEPE memecoin.

區塊鏈情報公司 Elliptic 表示，這次漏洞是「與北韓有關的違規行為」。它補充說，超過 200 種不同的數位資產被盜，包括價值約 5,260 萬美元的以太坊 ($ETH)（以太坊區塊鏈的原生加密貨幣）和約 760 萬美元的 $PEPE memecoin。

Elliptic confirmed Arkham's earlier revelation that some of the pilfered assets were already sold off. Some were swapped for $ETH "using a variety of decentralized services, an expected initial step of a typical laundering process."

Elliptic 證實了 Arkham 早些時候透露的一些被盜資產已經被出售的消息。 “使用各種去中心化服務，這是典型洗錢過程的預期第一步”，其中一些被兌換成 ETH。

Lazarus Group is a notorious North Korean state-sponsored hacking group that has been linked to multiple exploits in the cryptocurrency space. Within a three-year period, the exploiters are said to have laundered some $200 million in pilfered crypto.

Lazarus Group 是一個臭名昭著的北韓國家支持的駭客組織，與加密貨幣領域的多個漏洞有關。據稱，在三年內，利用被盜加密貨幣的犯罪分子洗錢金額約為 2 億美元。

ZachXBT published a lengthy report in April, unveiling the tactics used by Lazarus Group to cover its tracks as it laundered the funds it stole across over 25 hacks carried out between August 2020 and October 2023.

ZachXBT 在 4 月發布了一份長篇報告，揭露了 Lazarus Group 在洗錢 2020 年 8 月至 2023 年 10 月期間實施的超過 25 次黑客攻擊中竊取的資金時所使用的策略。

Pankaj Tanwar, the founder of the crypto education platform BTC Expert India, said he hopes that WazirX can recover the funds. "This mistake will damage crypto in India beyond imagination," he said.

加密貨幣教育平台 BTC Expert India 創辦人 Pankaj Tanwar 表示，希望 WazirX 能收回資金。 「這個錯誤將對印度加密貨幣造成超乎想像的損害，」他說。

Still not able to understand, 6 people there, need 4 to verify still hacked and blame game. Hope you guys will be able to recover funds as millions of users household on stake - This mistake will damage #Crypto in India beyond imagination.

仍然無法理解，那裡有 6 個人，需要 4 個人來驗證是否仍然被駭並責怪遊戲。希望你們能夠在數百萬用戶家庭受到威脅時收回資金 - 這個錯誤將對印度的 #Crypto 造成超乎想像的損害。

One user questioned why the exchange "keep[s] your 50% fund in a single wallet." WazirX is known to have held some $500 million worth of assets before the exploit, as per prominent Indian crypto figure Aditya Singh. "It's over for you guys. It's Lazarus Group. They have already sold and converted to cash," the user said.

一位用戶質疑為什麼交易所「將 50% 的資金放在一個錢包中」。據印度著名加密貨幣人物 Aditya Singh 稱，WazirX 在被利用之前持有價值約 5 億美元的資產。 「你們已經結束了。這是拉撒路集團。他們已經出售並兌換成現金了，」該用戶說。

As per the Latest POR report, Wazirx was Hodling $503 Million worth of Crypto. Hack is worth $230 Million as of now. If this amount is not recovered, can become a big problem for the exchange. pic.twitter.com/OAGa0KQJRB

根據最新的 POR 報告，Wazirx 持有價值 5.03 億美元的加密貨幣。截至目前，Hack 的價值為 2.3 億美元。如果這筆金額不收回，可能會成為交易所的大問題。 pic.twitter.com/OAGa0KQJRB

It is unclear whether WazirX is working with law enforcement to help recover the funds.

目前尚不清楚 WazirX 是否正在與執法部門合作以幫助追回資金。