 
 
The multi-million-dollar Solana sizzling pockets breach on crypto alternate Upbit on Thursday was the work of North Korean hackers, South Korean authorities now suspect.
How Lazarus Group Robbed Upbit Once more, Six Years Later
The large theft of 44.5 billion Korean received (roughly $30.4 million) from a Upbit sizzling pockets, which pressured the alternate to droop deposits and withdrawals, was linked to a gaggle generally known as Lazarus, in accordance with a Yonhap report.
The event follows Upbit’s announcement on Thursday that it had famous irregular withdrawals on the Solana community, prompting it to maneuver remaining funds offline and commit to completely compensating affected prospects.
The hack marked the platform’s second main sizzling pockets breach in six years. South Korean authorities imagine the newest safety breach concerned the hijacking or impersonation of administrator credentials to authorize the transfers, an assault vector much like the one utilized by the notorious Lazarus Group within the 2019 $50 million hack.
The Lazarus Group is a North Korean state-sponsored hacking outfit lengthy related to high-profile crypto thefts. The group has been tied to main exploits focusing on exchanges, decentralized finance protocols, and infrastructure suppliers.
 
On-chain sleuthing carried out by Arkham Intelligence early this yr linked the $1.5 billion hack of crypto alternate Bybit to North Korea’s Lazarus Group, which is likely one of the largest crypto hacks recorded.
In the meantime, a pockets seemingly tied to the 2025 Upbit hacker has swapped the ill-gotten Solana tokens for USDC and is bridging funds to Ethereum, on-chain information tracked by Dethective exhibits.
As ZyCrypto beforehand reported, the Thursday hack coincided with a significant company merger announcement involving Upbit’s guardian firm, Dunamu, and Korean web large Naver. Naver Monetary introduced Wednesday that it’s going to combine Dunamu as its wholly-owned subsidiary as a part of a $10.3 billion all-stock deal.
