CZ挑战安全{Wallet}审核清晰度

他对袭击的性质，黑客访问Bybit帐户的能力以及分类帐验证过程中的潜在缺陷表示担忧。

Binance co-founder Changpeng Zhao (CZ) has weighed in on Safe{Wallet}’s investigation into the recent Bybit hack, questioning the lack of clear answers in their audit report.

Binance联合创始人Changpeng Zhao（CZ）对安全{Wallet}对最近的Bybit Hack进行了调查，质疑其审计报告中缺乏明确的答案。

I usually try not to criticize other industry players, but I still do it once in a while. 😂 This update from Safe is not that great. It uses vague language to brush over the issues. I have more questions than answers after reading it.1. What does "compromising a Safe… https://t.co/VxywHyzqXb

我通常尽量不要批评其他行业参与者，但我仍然偶尔这样做。 😂SACE的此更新并不是那么好。它使用模糊的语言来解决问题。阅读后，我比答案有更多的问题。1。 “妥协安全……https：//t.co/vxywhyzqxb

CZ Challenges Safe{Wallet} Audit Clarity

CZ挑战安全{Wallet}审核清晰度

He raised concerns over the attack’s nature, the hacker’s ability to access Bybit’s account, and potential flaws in the Ledger verification process. The audit attributed the breach to a compromised developer device at Safe{Wallet}, but CZ argued that the explanation left more questions than answers.

他对袭击的性质，黑客访问Bybit帐户的能力以及分类帐验证过程中的潜在缺陷表示担忧。审计将违规行为归因于安全{Wallet}的受损开发人员设备，但CZ认为，解释留下的问题多于答案。

He said: “I feel like they are trying to cover up the issues with vague language. For example, was the attack due to malware or social engineering? How did the compromised developer machine manage to gain entry to Bybit’s wallet?”

他说：“我觉得他们正试图用模糊的语言掩盖问题。例如，是由于恶意软件或社会工程而引起的攻击？受损的开发人员如何设法进入Bybit的钱包？”

Crucially, he pushed for specifics on how the compromised developer machine could submit a disguised malicious transaction to Bybit’s account. Another key point of contention was whether the hackers exploited blind signatures during the Ledger verification process, a well-known crypto security vulnerability.

至关重要的是，他推动了有关受损开发人员如何将伪装的恶意交易提交给Bybit帐户的详细信息。另一个关键要点是，黑客在分类帐验证过程中是否利用了盲目签名，这是一个众所周知的加密安全脆弱性。

Unanswered Questions on Wallet Access and Security

关于钱包访问和安全性的未解决问题

Crucially, he pushed for specifics on how the compromised developer machine could submit a disguised malicious transaction to Bybit’s account. Another key point of contention was whether the hackers exploited blind signatures during the Ledger verification process, a well-known crypto security vulnerability.

至关重要的是，他推动了有关受损开发人员如何将伪装的恶意交易提交给Bybit帐户的详细信息。另一个关键要点是，黑客在分类帐验证过程中是否利用了盲目签名，这是一个众所周知的加密安全脆弱性。

Beyond the technical aspects, CZ also inquired why the hackers targeted a specific wallet holding $1.46 billion instead of other funds managed by Safe{Wallet}. This raises speculation about insider knowledge of the wallet’s contents.

除技术方面外，CZ还询问了为什么黑客瞄准了一个持有14.6亿美元的特定钱包，而不是由安全{Wallet}管理的其他资金。这引起了人们对钱包内容的内部知识的猜测。

Additionally, his critique emphasized the urgent need for self-custody wallet providers to learn from this breach and strengthen security protocols.

此外，他的批评强调了迫切需要自我顾客钱包提供者从这种违规行为中学习并加强安全协议。

Related: Bybit Hack Won’t Derail Crypto Rebound: Analyst’s Top Coin Predictions

相关：Bybit Hack不会使加密货币反弹出轨：分析师的顶级硬币预测

Safe{Wallet} Stands Firm on Audit, Names Lazarus Group

安全{Wallet}坚定地审计，名称Lazarus Group

On its part, Safe{Wallet} defended its audit and asserted that forensic investigations pointed to a targeted attack by the Lazarus Group. They said that a compromised developer device allowed hackers to submit a disguised malicious transaction. However, this explanation has done little to ease concerns among the crypto community.

就其部分而言，Safe {Wallet}捍卫了其审计，并断言法医调查指出了Lazarus集团的目标攻击。他们说，受损的开发人员设备允许黑客提交伪装的恶意交易。但是，这种解释并没有做出任何努力来缓解加密货币社区的关注。

Their statement reads: “Contrary to widespread assumptions, the hardware wallet used by the crypto exchange was never accessed or compromised. Instead, our investigation uncovered a sophisticated phishing attack targeting a single developer device at Safeмять. This device was compromised by the Lazarus Group, enabling them to submit a disguised malicious transaction to a specific hot wallet used by Bybit.”

他们的陈述写道：“与广泛的假设相反，加密交易所使用的硬件钱包从未被访问或妥协。取而代之的是，我们的调查发现了针对Safephim的单个开发人员设备的复杂网络钓鱼攻击。 Lazarus组妥协了该设备，使他们能够将伪装的恶意交易提交给Bybit使用的特定热钱包。”

ZenGo Expands TRX Wallet Features During Security Debate

Zengo在安全性辩论期间扩展了TRX钱包功能

Meanwhile, crypto adoption continues despite the recent Bybit hack and the ongoing debate over multisignature wallet security.

同时，尽管最近发生的拜百比·哈克（Bybit Hack）以及关于多符号钱包安全性的持续辩论，加密采用仍在继续。

Cryptocurrency wallet provider ZenGo has announced support for the TRON (TRX) network. This integration allows users to manage TRX – storing, buying, sending, receiving, and swapping – directly within the ZenGo platform.

加密货币钱包提供商Zengo宣布了对TRON（TRX）网络的支持。这种集成使用户可以直接在Zengo平台内管理TRX（存储，购买，发送，接收和交换）。

Announcing the development on X, the cryptocurrency wallet provider highlighted the importance of expanding its services to support a broader range of cryptocurrencies and networks. It said: “We're thrilled to announce that Zengo now supports TRON! We're bringing our game-changing security and seamless user experience to the TRON ecosystem.”

加密货币钱包提供商宣布X上的开发项目强调了扩大其服务以支持更广泛的加密货币和网络的重要性。它说：“我们很高兴地宣布Zengo现在支持Tron！我们将改变游戏的安全性和无缝用户体验带入TRON生态系统。”

Adding value for users, ZenGo has included additional features like real-time portfolio tracking and multiple payment options for purchasing TRX, including credit cards, bank transfers, and digital wallets.

为用户增加价值，Zengo还提供了其他功能，例如实时投资组合跟踪以及购买TRX的多个付款选项，包括信用卡，银行转让和数字钱包。

This expansion reflects a growing industry trend towards crypto wallets that are both secure and user-centric.

这种扩展反映了既安全又以用户为中心的加密钱包的行业趋势不断增长。