Blockchain analysts confirmed on April 6, 2025, that the $5 million wallet drain from April 4 targeted a DeFi platform, with traces leading to North Korean IP addresses linked to the Lazarus Group. The exploit leveraged a private key flaw, adding to the group’s $1.63 billion Q1 haul. Security firms urge multi-signature adoption, while ByBit’s $15M bounty hunt continues with no breakthroughs.
