The Harmony Horizon Bridge Hack: Part 1
Contents
Following the Trail Through Tornado Cash and Railgun to North Korea.
On June 24th 2022, the Harmony “Horizon Bridge” was hacked and thieves stole a variety of cryptoassets with a total value of $99.6 million. These cryptoassets were swapped for Ether and laundered through the now-sanctioned Tornado Cash.
Elliptic investigators were able to trace the entirety of the funds through the mixer at the time. They were also able to complete a detailed analysis of this exploit’s characteristics, as well as subsequent laundering typologies. As a result, Elliptic was the first to attribute the hack to APT38 – otherwise known as The Lazarus Group – within days of the hack. This attribution was later confirmed by the Federal Bureau of Investigation (FBI) in January 2023.
On June 24th 2022, the Harmony “Horizon Bridge” was hacked and thieves stole a variety of cryptoassets with a total value of $99.6 million. These cryptoassets were swapped for Ether and laundered through the now-sanctioned Tornado Cash.
Elliptic investigators were able to trace the entirety of the funds through the mixer at the time. They were also able to complete a detailed analysis of this exploit’s characteristics, as well as subsequent laundering typologies. As a result, Elliptic was the first to attribute the hack to APT38 – otherwise known as The Lazarus Group – within days of the hack. This attribution was later confirmed by the Federal Bureau of Investigation (FBI) in January 2023.
IoC
Following the Trail Through Tornado Cash and Railgun to North Korea.
On June 24th 2022, the Harmony “Horizon Bridge” was hacked and thieves stole a variety of cryptoassets with a total value of $99.6 million. These cryptoassets were swapped for Ether and laundered through the now-sanctioned Tornado Cash.
Elliptic investigators were able to trace the entirety of the funds through the mixer at the time. They were also able to complete a detailed analysis of this exploit’s characteristics, as well as subsequent laundering typologies. As a result, Elliptic was the first to attribute the hack to APT38 – otherwise known as The Lazarus Group – within days of the hack. This attribution was later confirmed by the Federal Bureau of Investigation (FBI) in January 2023.
On June 24th 2022, the Harmony “Horizon Bridge” was hacked and thieves stole a variety of cryptoassets with a total value of $99.6 million. These cryptoassets were swapped for Ether and laundered through the now-sanctioned Tornado Cash.
Elliptic investigators were able to trace the entirety of the funds through the mixer at the time. They were also able to complete a detailed analysis of this exploit’s characteristics, as well as subsequent laundering typologies. As a result, Elliptic was the first to attribute the hack to APT38 – otherwise known as The Lazarus Group – within days of the hack. This attribution was later confirmed by the Federal Bureau of Investigation (FBI) in January 2023.