Atomic Wallet users lost over $100M to an unknown vulnerability, with Lazarus Group identified as responsible by blockchain investigators.
Over 5,500 Atomic Wallet users lost funds in a series of coordinated thefts. The exact attack vector was never publicly confirmed, but investigators suspect a compromised software update or supply chain attack. Elliptic linked the hack to North Korea's Lazarus Group through on-chain analysis of fund flows.
Stolen funds routed through Sinbad mixer (a successor to Blender.io, itself a Lazarus-linked mixer). Multiple chains involved: BTC moved through Bitcoin mixers, ETH through Tornado Cash. Some funds converted via centralized exchanges using stolen KYC identities. Approximately $1M frozen by Tether.
0x5b5a9b0c3d4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d2e3f4a5b6c7d8e9f0