Table of Contents
The Bybit hack has shaken the crypto industry, with cybercriminals moving $3.64 million worth of stolen Ethereum (ETH) into DAI via decentralized exchanges (DEXs). The strategic use of DEXs like Uniswap, Sky (formerly MakerDAO), and OKX DEX demonstrates how hackers leverage decentralized platforms to bypass regulatory interventions. Unlike centralized stablecoins, DAI operates without a central authority, making it a preferred choice for laundering stolen funds.
What Happened in the Bybit Hack?
The Bybit hack on February 21 resulted in the theft of $1.4 billion in digital assets. Blockchain analysis shows that a wallet receiving a portion of the stolen ETH interacted with multiple DEXs, converting $3.64 million worth of ETH into DAI. According to copy trading platform LMK, the Bybit hacker consolidated the ETH into a single address before executing the swaps.
Read Also: Bybit Hack Shakes Crypto World: $1.4 Billion in Ethereum Vanishes Overnight
DAI’s decentralized nature makes it impossible for centralized issuers to freeze, unlike USDT or USDC, which can be blocked by Tether and Circle, respectively. This key difference underscores why DAI remains a popular choice for cybercriminals after large-scale breaches like the Bybit hack.
eXch’s Role
One significant development in the Bybit hack saga is the involvement of eXch, a crypto exchange criticized for refusing to freeze stolen funds. Blockchain data shows that part of the DAI converted from ETH found its way into eXch, an exchange known for minimal Know Your Customer (KYC) requirements. Unlike other exchanges that cooperated with Bybit by freezing suspected addresses, eXch declined to take action.
In a leaked email published on the Bitcointalk forum, eXch stated, “Given the direct attacks on the reputation of our exchange by Bybit over the past year, it is difficult for us to understand the expectation of collaboration at this time.” This refusal has drawn criticism, with many questioning eXch’s role in facilitating illicit financial activity following what happened.
Why DAI Was the Hacker’s Choice Post-Bybit Hack
The choice of DAI during the Bybit hack laundering process sheds light on the importance of stablecoin structures. Centralized stablecoins like USDT and USDC come with freeze mechanisms activated by issuing authorities. This was evident when Tether’s CEO, Paolo Ardoino, confirmed freezing $181,000 in USDT linked to the hack on February 22.
Read Also: $3 Billion Vanished in 2024: The Crypto Scam Olympics
However, DAI’s decentralized framework makes it resistant to such interventions. It operates via smart contracts without a central authority, which appeals to hackers aiming to evade regulatory measures. This choice demonstrates how decentralized assets can be exploited in sophisticated cyberattacks like this one.
What’s Next for the Stolen Funds from the Bybit Hack?
Blockchain experts believe the next phase of laundering stolen funds from the Bybit hack involves crypto mixers. According to blockchain security firm Elliptic, hackers may use services like Tornado Cash to obscure transaction histories further. These mixers combine transactions from multiple users, making it challenging to trace funds back to their origins.
This method has been widely used by cybercriminals, including state-sponsored hacking groups like Lazarus, which leads us to another crucial aspect of investigation.
What is Lazarus Group?
Renowned on-chain investigator ZachXBT has identified the Lazarus Group, a North Korean state-sponsored hacking organization, as the main suspect behind the Bybit hack. ZachXBT’s research shows that the wallet addresses used in the Bybit exploit match those from previous hacks involving exchanges like Phemex and BingX. Additionally, these addresses were connected to the Poloniex attack, further strengthening the Lazarus Group link to the Bybit hack.
Despite these findings, eXch continues to deny any association with Lazarus Group or involvement in laundering funds related to the Bybit hack. However, eXch’s refusal to freeze suspicious funds has raised industry-wide concerns.
How Bybit Hack Influences the Crypto Industry
The Bybit hack brings several critical issues in the cryptocurrency ecosystem to the forefront:
- Role of Decentralized Exchanges (DEXs): While DEXs provide financial freedom and censorship resistance, they also offer bad actors like the Bybit hacker opportunities to launder funds without oversight.
- Stablecoin Structure Matters: The distinction between centralized and decentralized stablecoins becomes evident in cases like this. DAI’s decentralized nature allowed hackers to evade fund freezes successfully.
- Exchange Accountability: eXch’s refusal to collaborate post-Bybit hack signals the need for clearer regulations. Exchanges must balance user privacy with the responsibility of preventing criminal activity.
The Ongoing Battle Post-Bybit Hack
The Bybit hack serves as a stark reminder of the vulnerabilities within the crypto space. The hacker’s strategic movement of $3.64 million in ETH via DEXs highlights how decentralized financial tools can be exploited. Despite freezing efforts by platforms like Tether, much of the stolen funds remain at large.
Moving forward, exchanges must strengthen their compliance frameworks while blockchain security tools continue evolving. The crypto industry must act swiftly to close loopholes that hackers exploit in high-profile incidents like this.