According to a report by Elliptic, funds siphoned from the Atomic Wallet hack have been sent to Sinbad, a crypto mixer used by the Lazarus Group.
Funds from the Atomic Wallet hack on June 3 have been sent to an encrypted mixer used by the notorious North Korean hacking group Lazarus Group, according to a report from cryptocurrency tracker Elliptic Enterprises.
$35 million stolen @atom wallet Users are laundering money through Sinbad – mixer fka(?) Blender and heavily used by NK’s Lazarus Group
— Elliptic Inv (@Elliptic_Inv) June 5, 2023
Oval Report Its investigative team traced funds from the $35 million hack to Sinbad.io, a cryptocurrency mixer used by the hacking group.
Elliptic’s investigative team was also following transaction leads and determined that the stolen funds were exchanged for bitcoin before being laundered through mixer Sinbad.io.former oval Research It has been revealed that Sinbad has been heavily used to launder over $100 million in proceeds from hacks carried out by North Korea’s Lazarus Group.
This includes assets from the $540 million Axie Infinity hack and the $100 million Horizon Bridge hack.
Atomic Wallet Users Lost Over $35 Million
On June 3, self-hosted, decentralized Atomic Wallet received reports that several wallets had been drained of funds.this project comfirmed A compromise was reached on June 4 and said it would look into the matter.
We have received reports of wallets being stolen. We are doing everything we can to investigate and analyze the situation. When we have more information, we will share accordingly.
With any questions and concerns, please contact (email protected)
— Atomic – Crypto Wallet (@AtomicWallet) June 3, 2023
Atomic said on June 5 that less than 1% of its monthly active users were compromised in the attack, adding that it was continuing to investigate.
Currently, less than 1% of monthly active users are affected/reported. The last drained transaction was confirmed 40 hours ago.
A security investigation is ongoing. We report victim addresses to major exchanges and blockchain analytics to track and stop stolen funds.
— Atomic – Crypto Wallet (@AtomicWallet) June 5, 2023
Blender.io relaunched as Sinbad.io
Earlier reports indicated that North Korean hackers have been using a new mixing service to launder stolen cryptocurrencies. Elliptic found that Blender, the cryptocurrency mixing service used by the Lazarus Group, has likely been relaunched under the name Sinbad.
Following a series of high-profile hacks, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) has imposed sanctions on Blender and Tornado Cash for helping Lazarus launder nearly $500 million in illicitly obtained cryptocurrency. Tornado Cash continued to operate after the US imposed sanctions on mixing services, while Blender ceased operations and disappeared after reportedly taking $22 million in bitcoin from mixers.
According to Elliptic, Blender may start operating a new service called Sinbad, which Lazarus used to launder money in October 2022.
Disclaimer: This article is for informational purposes only. It does not provide or be intended to be used as legal, tax, investment, financial or other advice.