Orbit Bridge (service name Orbit Bridge), which is used as the main bridge in the Klaytn ecosystem, was robbed of virtual assets (cryptocurrency) worth approximately $81.5 million (KRW 106 billion) due to an exploit (vulnerability attack), and the subject of the attack was The National Intelligence Service took action after a series of reports were made about the North Korean hacking group ‘Lazarus’.
A theft incident occurred from a bridge used by famous domestic platforms such as Kakao (035720) blockchain platform Klaytn and Wemade (112040) blockchain project Wemix, and as analysis emerged that the subject of the attack was North Korea, the National Intelligence Service attempted to identify the subject of the attack. It is interpreted that it was for this purpose.
On the 5th, the National Intelligence Service related to the Orbit Bridge virtual asset theft incident. “We are investigating the cause of the accident and the person responsible for the attack,” he said. “To date, no connection with North Korea has been confirmed, but we are investigating in collaboration with related organizations with the possibility in mind.”
When a virtual asset theft incident occurs on a blockchain, such as the ‘Gdak 18 billion won virtual asset theft incident’ that occurred last April, it is common for the National Police Agency Cyber Investigation Unit and KISA to be deployed, but it is unusual for the National Intelligence Service to also join in.
According to Orbit Bridge operator Ozis, on the 1st, when the virtual asset theft incident occurred, Ozis notified KISA and the National Police Agency of the asset theft incident. This appears to have fulfilled the reporting obligation under the Information and Communications Network Act.
According to Article 48 3 of the Information and Communications Network Act (Reporting of Infringement Accidents, etc.), when an infringement incident occurs, an information and communications service provider must immediately report the fact to the Minister of Science and ICT or the Korea Internet & Security Agency.
As a result, in the early days of the Orbit Bridge virtual asset theft incident, KISA and the National Police Agency were deployed to analyze the cause of the incident, just as in the case of the JDAC incident. Later, in this case, it was analyzed that the North Korean hacking group Lazarus was likely the main agent of the attack. As this was raised, even the National Intelligence Service was brought in.
Regarding the attack method that stole assets from Orbit Bridge the previous day, Match Systems, a global blockchain analysis company, said, “Last year, Atomic Wallet, Coinspade, and CoinX were attacked using the Lazarus pattern. “There is a high probability that it is the same group as a criminal group,” he explained.
Meanwhile, Ozzys is actively cooperating with the investigation of the case and is taking the position of resolving this situation with the help of global virtual asset analysis companies.
According to Orbit Bridge, Uppsala Security, a virtual asset tracking service operated by Uppsalagen, and the Tone Foundation have joined as a support group to resolve the Orbit Bridge asset theft incident.
In addition, since Orbit Bridge has had a great influence not only on Klaytn’s decentralized finance (DeFi) but also on the overall ecosystem, it is expected to receive support from Klaytn in resolving the situation and providing relief to victims. According to Ozis, on this day, Ozis and Clayton plan to announce their joint response to this incident.
Source: Donga
Mark Jones is a world traveler and journalist for News Rebeat. With a curious mind and a love of adventure, Mark brings a unique perspective to the latest global events and provides in-depth and thought-provoking coverage of the world at large.