Indodax Suffers Significant Crypto Exploit
Indodax, an Indonesian cryptocurrency exchange, has reportedly fallen victim to a major security breach, resulting in an estimated loss of $20.5 million, as detailed by the blockchain security firm Cyvers.
Details of the Security Breach
The exploit impacted various blockchain networks, including:
- Bitcoin: $1.4 million lost
- TRON: $5 million stolen
- Polygon: $5 million lost
- Optimism: Over $14 million
- Ethereum: Over $14 million
Indodax took to social media on September 11 to inform users of the discovered security vulnerability, affirming that their funds were safe. The platform stated:
“Currently, we are conducting a complete maintenance to ensure the entire system is operating properly. During this maintenance process, the INDODAX web platform and application are temporarily inaccessible.”
Warning to Users
In addition to addressing the exploit, Indodax cautioned its users against phishing scams that promise fake refunds or request personal information.
Possible Connection to North Korean Hackers
Yosi Hammer, the Head of AI at Cyvers, suggested that the attack could be linked to the Lazarus Group, a hacking collective believed to be supported by North Korea.
“The attack exhibited characteristics typical of sophisticated hacking groups, such as the Lazarus Group, known for their rapid asset transfers, access control violations, and multiple swaps.”
While Hammer indicated the similarities, he also acknowledged that it is premature to conclusively identify the attackers.
Background on North Korean Cyber Activities
Over the last seven years, North Korean hackers have orchestrated approximately $3 billion in cryptocurrency theft across 58 cyber breaches. Their tactics have targeted a wide range of crypto entities, including:
- Centralized exchanges
- Bridges between different cryptocurrencies
- Job boards to infiltrate crypto projects
This relentless cybercrime activity has led many to label North Korea as the “world’s most prolific cyber-thief.” Additionally, it has been noted that the regime has leveraged cryptocurrency to circumvent sanctions and fund its weapons programs.
