2025-06-19
BitoPro
BitoPro Statement & Progress Update
#BitoPro
#Lazarus
BitoPro
#BitoPro
- Reported: 2025-05
- Locations: Taiwan
- Motivations: #FinancialGain
- Sectors: #Cryptocurrency
Summary
On May 9, 2025, BitoPro experienced a cyberattack that, following a month-long joint investigation with a third-party cybersecurity firm, was attributed to the North Korean hacking group Lazarus. The attackers used social engineering to compromise a cloud operations staff member, implanted malware, bypassed security systems, hijacked AWS session tokens, and eventually executed a stealthy attack during a wallet system upgrade, stealing cryptocurrency from a hot wallet. Immediate response actions were taken, including emergency shutdowns, key replacements, and system rebuilds. The case is now under criminal investigation, and wallet data has been updated through Arkham. This incident underscores the evolving nature of cyber threats and highlights the urgent need for stronger security across digital asset platforms and the broader financial sector. BitoPro remains committed to enhancing its security posture and promoting industry-wide collaboration for a safer digital environment.