Experts discovered that the hack wasn’t due to Bybit itself but resulted from compromised credentials of Safe (Wallet) developers. Hackers from the Lazarus Group exploited a vulnerability in AWS cloud infrastructure, injected malicious code, and withdrew $1.46 billion in Ethereum!
The attackers moved fast—erasing traces within minutes. However, investigations revealed that the code allowed them to swap recipient addresses during transactions
Good news: Bybit’s infrastructure wasn’t breached, and the exchange restored reserves to a 1:1 ratio within just 72 hours after the attack!
Stay vigilant!