Cryptologic

.


This past month, hackers stole a staggering $1.5 billion from the crypto exchange Bybit in what the market dubbed “The biggest digital heist ever”. Unsurprisingly, the sheer scale of the attack has led many to once again question the safety of crypto, with critics pointing fingers at the industry’s security vulnerabilities. But here’s the twist: the wallets did their job. The problem wasn’t a failure of the underlying technology - it was a failure of ‘human’ security.

Janine Grainger, Founder and CEO of Easy Crypto, explores what happened, what’s being done to recover the funds and what needs to be considered as the industry works to prevent similar attacks in the future.

What exactly went wrong?

The bottom line is that the Bybit hack wasn’t a failure of blockchain security - the attackers didn’t crack an impenetrable system; they manipulated people…

In very simple terms, the attack occurred when the company was making a routine transfer of Ethereum from an offline ‘cold’ wallet (a highly secure, offline storage solution designed to protect assets from cyber threats by keeping private keys completely disconnected from the internet) to a ‘warm’ wallet (a semi-online wallet used for operational liquidity, allowing faster access to funds while maintaining some security measures) for daily trading activities.

The hackers gained access to the software account that helps Bybit control these transfers by compromising a developer’s machine. They remotely modified the user interface, injecting malicious code that manipulated the wallet’s transaction approval process. Employees who usually sign off these transfers saw what looked like legitimate transactions, but behind the scenes, the attackers rewrote the rules, diverting funds straight into hacker controlled accounts.

To make matters worse, the attack leveraged ‘blind signing’. When approving the transactions, employees were effectively signing off on something they couldn’t fully see on their screen. The attackers manipulated this process so effectively that employees believed they were approving routine transfers.

The combination of UI manipulation and blind signing created a near-perfect deception. Importantly, however, it wasn’t crypto’s technology that failed. It was a case of catastrophic human error.

Can the funds be recovered?

The hack has been attributed to North Korean state-sponsored hacking group the Lazarus Group who has a history of targeting crypto exchanges to fund North Korea's economy and sanctioned programs.

Working against this group is the traceability of blockchain. With all eyes on the stolen funds and every blockchain transaction publicly visible, being able to bank the money will be as difficult as stealing it in the first place (although some funds have also been converted into privacy-focused coins like Monero, which are much harder to track).

Importantly, Bybit acted swiftly to reassure customers and worked quickly to secure emergency funding to restore liquidity. They’ve also launched a comprehensive bounty program offering 5% rewards to individuals or firms that help identify and freeze these stolen funds. A real-time leaderboard has been set up to track progress, turning crypto sleuths into heroes!

Preventing future attacks

If there’s one takeaway from this attack, it’s that the industry needs stronger protections against cyber crime - including human-targeted cyber crime..

Exchanges need to go beyond traditional security - The danger of ‘blind signing’ has been made clear and needs to be phased out in favour of clear transaction signing so users can actually see what they’re approving.

In addition, multi-factor authentication for this type of signing could be enabled if exchanges opt to use multi-party computation (MPC) wallets which have started to gain favour in many circles over seed phrases, making key compromises far more difficult. MPC wallets distribute private key ‘fragments’ among multiple parties, reducing the risk of a single point of failure. Unlike traditional seed phrases, MPC eliminates the risk of a single exposed key leading to complete account compromise. (Easy Crypto’s wallet is an MPC wallet.)

Employees need better training - Cyberattack drills should be routine and phishing awareness training should be ongoing. Attackers are getting smarter and exchanges need to ensure their teams can recognise a red flag before it’s too late.

Real-time monitoring needs to be the standard - AI-driven security systems can flag unusual transaction patterns instantly, triggering immediate reviews and helping prevent unauthorised withdrawals.

The bigger picture

This hack didn’t expose flaws in blockchain itself - but it did expose the risks of human error and deception. That distinction, however, didn’t make much difference to the general public. The damage was done, and confidence in crypto security took yet another hit.

Hackers will keep coming…The real question is whether the crypto industry will learn from Bybit and act now to prevent the next attack? If they don’t, it’s only a matter of time before another billion-dollar breach shakes the market all over again.
Tagged under Janine Grainger, Founder and CEO of Easy Crypto Bybit hackers Easy Crypto

Trending

Is the crypto bull run over?

Written by: Paul Quickenden, Chief Commercial Officer, Easy Crypto This year, Bitcoin hit an all-time high - spirits soared as we had a presidential regime that supported crypto (and even launched a ...

Are stablecoins the new superstars of crypto?

By Paul Quickenden, Chief Commercial Officer, Easy Crypto Let me tell you a story… Fifteen years ago, a guy bought two pizzas for 10,000 Bitcoin. At the time, Bitcoin was only worth a few cents and ...

Unmasking the Underworld: The Rising Tide of Money Laundering, Darknet Marketplaces, and Wash Trades in the Cryptocurrency World

Laundering of funds Criminals laundered $8.6 billion in cryptocurrencies in 2021, up 30% from the previous year, according to blockchain data company Chainanalysis. According to the data, rather t...

Australia Proposes Scams Code Framework: A Game-Changing Initiative

In a bold move to tackle the escalating menace of scams, the Australian Treasury has unveiled a groundbreaking consultation paper proposing a comprehensive 'Scams – Mandatory Industry Codes' framewo...

Comprehending Blockchain Technology: Delving into the Core Concepts of Cryptocurrencies and Decentralised Systems

Blockchain technology has surfaced as a pioneering innovation, revolutionising numerous industries and presenting a novel paradigm for secure and transparent transactions. This article aims to offer...

Market Update: Bitcoin (BTC) and Ether (ETH) Hold Steady as Altcoins Make Partial Recovery

In this market update, we take a closer look at the recent developments in the cryptocurrency space, with a particular focus on Bitcoin (BTC) and Ether (ETH). Despite a brief surge, BTC has settled ...

BingX Expands RWA Offerings, Empowering Traders with Greater Flexibility

PANAMA CITY, October 25, 2025 – BingX, a leading cryptocurrency exchange and Web3 AI company, has launched the expansion of its Real-World Asset (RWA) perpetual futures offerings, introducing access t...

An open letter to the IRD: supporting clarity while enabling growth

By: Paul Quickenden, Swyftx NZ Country Manager Most people don’t think about tax when they think about crypto. They think about price, volatility and maybe regulation. But tax is where things becom...

Unveiling the Ascension: Bitcoin Surpasses $66,000 Mark

In a groundbreaking surge, Bitcoin has catapulted above the $66,000 mark, marking a historic milestone in the digital currency's ascent. As of Wednesday, US time, Bitcoin proudly stood at $66,096, a...

The Surprising Symbiosis: Bitcoin Mining and AI Development

As artificial intelligence enterprises strive to enhance the sophistication and utility of their offerings, the appetite for economical, abundant energy has surged exponentially. This burgeoning dem...

Decoding Australia's Controversial DeFi Tax Guidance

In the ever-evolving landscape of cryptocurrency, Australia finds itself at the epicentre of a recent storm of controversy surrounding the Australian Tax Office's (ATO) new guidelines on decentral...

Coinbase Targets Australia's $600 Billion Superannuation Market as Crypto Demand Soars

Coinbase, the leading cryptocurrency exchange based in the United States, is making a strategic move to enter Australia's self-managed superannuation fund (SMSF) sector. With a sharp focus on the imme...

Safeguarding Cryptocurrency: Understanding and Mitigating Common Security Threats and Risks

Cryptocurrency has gained significant popularity in recent years, but with its rise, security concerns and risks have also increased. In this conversation, I would like to discuss the various security...

Victoria Police Seizes Crypto Assets Amid New Legal Powers: Unpacking Australia’s Evolving Crypto Regulation

The first successful crypto asset seizure by Victoria Police in Australia marks a significant moment in the country’s approach to cryptocurrency regulations. This recent move underlines a new legal ...

Stand With Crypto Australia: The Movement Explained

In 2025, the phrase “Stand With Crypto Australia” has become more than just a slogan — it’s a rallying cry for investors, entrepreneurs, and innovators in the blockchain space. Amid increasing regu...