Over the weekend, hackers stole more than $290 million in cryptocurrency from Kelp DAO, a protocol that lets users earn yields on idle crypto investments. By Monday, LayerZero—one of the projects affected by the breach—publicly accused North Korea of orchestrating the heist. The incident has become the largest cryptocurrency theft of the year, surpassing an April hack at the crypto exchange Drift that netted hackers approximately $285 million.
According to LayerZero’s post on X, the attackers exploited a vulnerability in Kelp DAO’s integration with the LayerZero bridge, a technology that facilitates communication and transaction instructions between different blockchains. They then leveraged Kelp DAO’s security configuration, which lacked multi‑signature verification requirements before approving transactions, allowing the thieves to siphon off funds through fraudulent transfers.
LayerZero cited “preliminary indicators” pointing to North Korea as the perpetrator, specifically implicating its hacking group known as TraderTraitor, which has a track record of targeting cryptocurrency platforms. In response, Kelp DAO pushed back, placing blame on LayerZero for the theft.
North Korean hackers affiliated with Kim Jong Un’s regime have become increasingly adept at stealing cryptocurrency in recent years. In 2022 alone, they reportedly stole over $2 billion in crypto assets, and since 2017 the cumulative amount taken by North Korean actors is estimated at around $6 billion. The Kelp DAO breach underscores the growing sophistication of state‑sponsored cybercriminal operations and the persistent vulnerabilities in cross‑chain infrastructure.
As blockchain interoperability expands, so does the attack surface for malicious actors. The incident has reignited calls within the crypto industry for stricter security protocols, including mandatory multi‑signature approvals and enhanced auditing of bridge technologies.
Comments are closed for this story.