研究人员称，朝鲜黑客与原子钱包泄露有关

加密货币专家认为，朝鲜国家支持的黑客最近策划了对 Atomic Wallet 用户的攻击，造成估计数百万美元的重大损失。据报道，非托管去中心化钱包 Atomic Wallet 遭遇了一次泄露，影响了不到 1% 的用户，导致约 3500 万美元的加密资产被盗。区块链分析公司 Elliptic 将此次攻击归咎于 Lazarus 集团，该集团因通过 Sinbad 洗钱被盗的加密资产而闻名，Sinbad 是一个此前与该集团活动有关的加密货币混合器。

North Korean Hackers Implicated in Atomic Wallet Breach

朝鲜黑客涉嫌原子钱包泄露

Tallinn, Estonia - Cybersecurity researchers have attributed the recent hack on Atomic Wallet, a decentralized cryptocurrency wallet service, to North Korean state-sponsored hackers known as the Lazarus Group.

爱沙尼亚塔林 - 网络安全研究人员将最近对去中心化加密货币钱包服务 Atomic Wallet 的黑客攻击归咎于朝鲜国家支持的名为 Lazarus Group 的黑客。

Atomic Wallet, which supports over 500 cryptocurrencies and claims over five million users globally, confirmed on June 3 that it had received reports of compromised wallets and launched an investigation. While the company has not disclosed the number of affected users or the value of stolen assets, independent blockchain analysis firm Elliptic has estimated the losses at approximately $35 million.

Atomic Wallet 支持 500 多种加密货币，声称在全球拥有超过 500 万用户，该钱包于 6 月 3 日证实，已收到有关钱包受损的报告并启动了调查。虽然该公司尚未透露受影响的用户数量或被盗资产的价值，但独立区块链分析公司 Elliptic 估计损失约为 3500 万美元。

Elliptic's analysis, which was conducted with "a high level of confidence," suggests that the Lazarus Group is responsible for the hack based on the laundering patterns used to conceal the stolen crypto assets. These patterns, according to Elliptic, closely resemble those employed in previous hacks attributed to the group, including the $625 million Ronin Network hack in 2022.

Elliptic 的分析是“高度自信”地进行的，分析表明，基于用于隐藏被盗加密资产的洗钱模式，Lazarus 集团应对此次黑客攻击负责。 Elliptic 表示，这些模式与该组织之前遭受的黑客攻击非常相似，其中包括 2022 年价值 6.25 亿美元的 Ronin Network 黑客攻击。

Further investigation revealed that the hackers are laundering the stolen funds through Sinbad, a cryptocurrency mixer that enables users to conceal the origin of their funds. Elliptic believes Sinbad is a rebrand of Blender.io, a mixer previously sanctioned by the U.S. Treasury for facilitating North Korean money laundering activities.

进一步调查显示，黑客正在通过 Sinbad 洗钱，这是一种加密货币混合器，使用户能够隐藏资金来源。 Elliptic 认为 Sinbad 是 Blender.io 的重塑品牌，Blender.io 是一家混合公司，此前曾因便利朝鲜洗钱活动而受到美国财政部的制裁。

In May 2022, the U.S. Treasury identified Blender.io as a tool used by North Korea to "support its malicious cyber activities." The Lazarus Group was specifically implicated in laundering over $20 million of the stolen funds from the Ronin Network hack through Blender.io.

2022 年 5 月，美国财政部将 Blender.io 认定为朝鲜用来“支持其恶意网络活动”的工具。 Lazarus Group 涉嫌通过 Blender.io 对 Ronin Network 黑客攻击中被盗资金进行了超过 2000 万美元的洗钱活动。

Independent blockchain researcher @ZachXBT also noted similarities between the laundering patterns in the Atomic Wallet hack and previous hacks linked to the Lazarus Group, including the Harmony Horizon Bridge hack in which $100 million in cryptocurrency was stolen.

独立区块链研究员 @ZachXBT 还指出，Atomic Wallet 黑客攻击中的洗钱模式与之前与 Lazarus Group 有关的黑客攻击之间存在相似之处，其中包括 Harmony Horizo​​n Bridge 黑客攻击，其中 1 亿美元的加密货币被盗。

The exact methods used to compromise Atomic Wallet's systems remain unknown, and it is unclear whether affected users will be compensated. However, Atomic Wallet has stated that it is committed to assisting victims and has engaged third-party assistance to trace stolen funds and collaborate with exchanges and authorities.

用于破坏 Atomic Wallet 系统的确切方法仍然未知，也不清楚受影响的用户是否会得到补偿。不过，Atomic Wallet 表示，它致力于协助受害者，并已聘请第三方协助追查被盗资金，并与交易所和当局合作。

In a related development, U.S. officials recently imposed new sanctions on North Korea, targeting its illicit IT workforce, which the country has used to fraudulently gain employment and finance weapons of mass destruction programs. North Korean hackers have been actively targeting blockchain companies and developing malicious crypto-stealing apps as part of these efforts.

与此相关的事态发展是，美国官员最近对朝鲜实施了新的制裁，目标是其非法 IT 劳动力，该国利用这些劳动力以欺诈手段获得就业机会并为大规模杀伤性武器计划提供资金。作为这些努力的一部分，朝鲜黑客一直积极瞄准区块链公司并开发恶意加密货币窃取应用程序。