North Korea's Lazarus Group moved $750,000 in Ethereum to Tornado Cash.
ByAinvest
Thursday, Mar 13, 2025 3:01 am ET1min read
ETH--
According to blockchain security firm PeckShield, addresses linked to the Lazarus group have transferred approximately 40,391 ETH, equivalent to $145.7 million, through Tornado Cash [1]. The funds were distributed among 18 different addresses, which then sent the funds to two Tornado Cash addresses [1]. This recent activity demonstrates the group's continued efforts to evade detection and exploit vulnerabilities in the crypto ecosystem.
The Lazarus group's return to Tornado Cash is not surprising, given the challenges authorities face in curtailing the operations of such decentralized mixers [1]. The group has been linked to several high-profile crypto hacks and exploitations, including the $41 million hack of online casino platform Stake and the $100 million stolen from Atomic Wallet [2]. The total amount stolen by North Korea-linked hackers is estimated to be over $3 billion between 2017 and 2023 [2]. These illicit proceeds serve as a significant source of foreign currency earnings for the heavily sanctioned country, which also allegedly uses them to fund its weapons program [2].
Despite the ongoing crackdown on centralized mixers like Sinbad.io, the Lazarus group's use of Tornado Cash highlights the need for continued vigilance and innovation in the crypto security space [1]. As the crypto ecosystem continues to evolve, it is essential to stay informed and adapt to new threats and challenges.
References:
[1] Cryptoslate. (2023, April 14). North Korea-backed Lazarus group funnels over $100 million in Ethereum through sanctioned mixer Tornado Cash in 8 days. https://cryptoslate.com/north-korean-lazarus-group-funnels-over-100-million-in-ethereum-through-sanctioned-mixer-tornado-cash-in-8-days/
[2] TRM Labs. (2023, April 13). North Korea's Lazarus Group Moves Funds Through Tornado Cash. https://www.trmlabs.com/post/north-koreas-lazarus-group-moves-funds-through-tornado-cash
TORN--
North Korea's Lazarus Group moved $750,000 in Ethereum to Tornado Cash.
The notorious North Korea-backed Lazarus group has once again resurfaced in the crypto world, this time employing the sanctioned decentralized crypto mixer, Tornado Cash, to launder over $100 million in stolen Ethereum [1]. This heist marks the first significant movement of funds since the group's exploitation of the HTX and Heco bridge last November, believed to be the work of the same North Korean hackers [1].According to blockchain security firm PeckShield, addresses linked to the Lazarus group have transferred approximately 40,391 ETH, equivalent to $145.7 million, through Tornado Cash [1]. The funds were distributed among 18 different addresses, which then sent the funds to two Tornado Cash addresses [1]. This recent activity demonstrates the group's continued efforts to evade detection and exploit vulnerabilities in the crypto ecosystem.
The Lazarus group's return to Tornado Cash is not surprising, given the challenges authorities face in curtailing the operations of such decentralized mixers [1]. The group has been linked to several high-profile crypto hacks and exploitations, including the $41 million hack of online casino platform Stake and the $100 million stolen from Atomic Wallet [2]. The total amount stolen by North Korea-linked hackers is estimated to be over $3 billion between 2017 and 2023 [2]. These illicit proceeds serve as a significant source of foreign currency earnings for the heavily sanctioned country, which also allegedly uses them to fund its weapons program [2].
Despite the ongoing crackdown on centralized mixers like Sinbad.io, the Lazarus group's use of Tornado Cash highlights the need for continued vigilance and innovation in the crypto security space [1]. As the crypto ecosystem continues to evolve, it is essential to stay informed and adapt to new threats and challenges.
References:
[1] Cryptoslate. (2023, April 14). North Korea-backed Lazarus group funnels over $100 million in Ethereum through sanctioned mixer Tornado Cash in 8 days. https://cryptoslate.com/north-korean-lazarus-group-funnels-over-100-million-in-ethereum-through-sanctioned-mixer-tornado-cash-in-8-days/
[2] TRM Labs. (2023, April 13). North Korea's Lazarus Group Moves Funds Through Tornado Cash. https://www.trmlabs.com/post/north-koreas-lazarus-group-moves-funds-through-tornado-cash
Stay ahead of the market.
Get curated U.S. market news, insights and key dates delivered to your inbox.
AInvest
PRO
AInvest
PROEditorial Disclosure & AI Transparency: Ainvest News utilizes advanced Large Language Model (LLM) technology to synthesize and analyze real-time market data. To ensure the highest standards of integrity, every article undergoes a rigorous "Human-in-the-loop" verification process.
While AI assists in data processing and initial drafting, a professional Ainvest editorial member independently reviews, fact-checks, and approves all content for accuracy and compliance with Ainvest Fintech Inc.’s editorial standards. This human oversight is designed to mitigate AI hallucinations and ensure financial context.
Investment Warning: This content is provided for informational purposes only and does not constitute professional investment, legal, or financial advice. Markets involve inherent risks. Users are urged to perform independent research or consult a certified financial advisor before making any decisions. Ainvest Fintech Inc. disclaims all liability for actions taken based on this information. Found an error?Report an Issue
ABOUT US
Our StoryNews AuthorsKnowledge BasePrivacy PolicyTerm of UseThird Party Brokerage DisclaimerAIME Terms of UseAInvest AI Risk DisclosuresCareersCONTACT US
Email: support@ainvest.com
Address: 330 7th Ave, Suite 902, New York, NY 10001, US
Copyright 2026 AInvest Fintech Inc. All rights reserved.
Comments
No comments yet