Humanity Protocol’s $36M hack tied to suspected North Korean hackers: Quantstamp

Quantstamp reported on March 18, 2024, that a phishing attack using a fake Bithumb email was the likely method used to steal $36 million from Humanity Protocol, indicating the involvement of North Korean state-sponsored hackers. The cybersecurity firm detailed how the attackers impersonated the cryptocurrency exchange Bithumb to trick users into revealing their private keys, which then allowed them to drain funds from the protocol. Quantstamp's analysis suggests that the sophistication and operational patterns align with known tactics employed by North Korean hacking groups, such as Lazarus Group. This incident highlights the persistent threat posed by nation-state actors in the decentralized finance (DeFi) space, seeking to exploit vulnerabilities for financial gain and to fund illicit activities. The investigation is ongoing, with Quantstamp continuing to monitor for further activity related to this breach.