Bybit Exchange suffered a $1.46 billion theft from its Ethereum cold wallet due to sophisticated interface manipulation and social engineering, attributed to North Korea’s Lazarus Group. This breach, the largest since Mt. Gox’s collapse, revealed vulnerabilities in multisig systems. Bybit promptly isolated affected systems and ensured the security of other funds, processing 350,000 withdrawal requests to restore user access.
Hackers Exploited Confluence Server Vulnerability To Deploy LockBit Ransomware
A sophisticated ransomware attack exploited a critical Atlassian Confluence vulnerability (CVE-2023-22527) to deploy LockBit Black ransomware within two hours. The attackers utilized credential theft, RDP
