A stealthy crypto theft traced back to North Korea’s Lazarus Group has shaken the Solana and Ethereum ecosystems, after hackers siphoned $3.2 million worth of digital assets and moved the funds through one of the most controversial privacy tools in crypto—Tornado Cash.
On 16 May 2025, wallets on the Solana network were drained in a targeted breach.
Blockchain analysts flagged the initial outflow from a Solana address identified as “C4WY…e525”.
The attackers didn’t linger—within hours, they bridged the stolen assets to Ethereum, a network known for its liquidity and wide toolset for asset swaps.
According to on-chain investigator ZachXBT, this manoeuvre bore striking resemblance to previous Lazarus-linked exploits.
Source: Investigations by ZachXBT
The stolen funds were swiftly swapped and transferred through a cross-chain bridge, stripping away obvious traces of origin.
Once on Ethereum, the attackers began a familiar laundering process.
On 25 and 27 June, two separate deposits of 400 ETH—totalling roughly $1.6 million—were pushed into Tornado Cash.
These transactions match Lazarus’s typical method: break large sums into chunks, move them through privacy mixers, and scatter them across decentralised exchanges.
ZachXBT, who has long tracked high-level crypto exploits, flagged the pattern early.
He pointed to clear similarities between the transaction pattern and previous hacks associated with the Lazarus Group, citing how the funds were bridged, broken into smaller amounts, and funneled through Tornado Cash—methods the group has employed multiple times in the past.
Despite sanctions against Tornado Cash since 2022, its smart contracts remain live on Ethereum.
The U.S. appeals court decision in January 2025 to reverse the sanctions—citing free speech protections—has made enforcement murkier.
Roughly $1.25 million in stolen funds remain unspent in a wallet on Ethereum labelled “0xa5…d528”.
The balance is held in ETH and DAI, sparking speculation from analysts.
Some believe the money is deliberately left dormant to avoid detection; others suggest it could be reactivated through fresh laundering layers.
Authorities and blockchain monitoring tools are likely to continue watching the address, though Tornado Cash’s ability to erase transaction history complicates future efforts.
The Lazarus Group has long been linked to high-stakes cybercrimes.
From the $100 million Horizon bridge exploit in 2022 to the reported $1.5 billion Bybit breach earlier this year, their fingerprints appear across some of crypto’s most high-profile thefts.
Their tactics remain largely unchanged: breach wallets or smart contracts through phishing or exploits, cash out quickly, move funds across blockchains, then clean them using mixers and non-KYC exchanges.
Researchers note that the Lazarus Group tends to avoid centralised exchanges, where compliance teams can freeze suspicious wallets.
Instead, the group prefers decentralised platforms and cross-chain bridges, which allow funds to move freely without identity checks—making investigations significantly more difficult.
The growing reliance on cross-chain tools, automated bridges, and unregulated privacy protocols is proving to be an effective escape route for well-funded hacking groups.
When the same vulnerabilities are exploited again and again—despite sanctions, audits, and upgraded defences—it raises a fundamental question: are current crypto systems resilient enough to handle threats backed by entire regimes?
With mixers still online and cross-chain swaps left largely unguarded, Lazarus isn't just exposing gaps in infrastructure—they’re exploiting a system that was never built for national-scale cyber warfare.
Invesco and Galaxy filed for a Solana ETF, aiming to give investors regulated access to the SOL token. Another filing proposes a new ETF mixing memecoins and NFTs from the Pudgy Penguins collection, marking a first of its kind in the market.
AnaisEther (ETH) recently rose by 17% to nearly $2,470 after easing geopolitical tensions, but institutional traders remain cautious with weak demand for leveraged long positions. Despite ETF inflows and price gains, market indicators show a neutral sentiment and a disconnect between Ethereum’s valuation and its network fundamentals.
Jason RiggsSol Strategies, a Canadian crypto investment firm, has applied to list on Nasdaq after heavily investing in Solana tokens and staking operations. Despite a recent $3.5 million loss, the company aims to raise more capital and grow its presence in the US market.
AnaisStripe has bought Privy to integrate its crypto wallet technology into Stripe’s payment services. The deal aims to make Web3 payments smoother for developers and businesses by reducing friction in wallet setup and transactions.
WeatherlyEthereum staking has hit a new record, with nearly 29% of all ETH now locked as the price climbs above $2,700. The rise comes as investors show more confidence and hopes grow for spot ETH ETFs that include staking.
Jason RiggsThe SEC has asked Solana ETF issuers to quickly update their filings, speeding up the approval process with decisions possible within weeks. This includes allowing staking features, which could boost investor interest and confidence in Solana.
WeatherlyMusician Jonathan Mann sold 3,700 songs as NFTs and earned around $3 million in crypto, but its value crashed soon after. He ended up owing over $1 million in taxes and sold a rare NFT to pay the bill, yet he keeps creating new songs daily.
AnaisThe SEC is changing how it regulates crypto by creating clear rules instead of using tough enforcement. Chairman Paul Atkins says the goal is to protect investors while helping crypto and blockchain grow in the UK and beyond.
AnaisIn response to the growing criticism around its leadership and strategic direction, Ethereum Foundation has announced a massive shakedown.
XingChi朝鲜半岛紧张局势持续升级,韩军对军事分界线南侧进行警告射击,朝鲜则炸毁了连接两国的通路。币圈担忧,若战争爆发,韩国作为主要的加密货币市场,恐慌情绪可能引发比特币价格剧烈波动。
AlexCanary Capital Group向美国证监会提交莱特币现货ETF申请,莱特币价格迅速上涨逾7%。同时,香港胜利证券宣布允许投资者使用USDT认购基金,稳定币恢复了美元锚定。
Miyuki比特币在萨尔瓦多推行三年,但民众接受度依然低迷
Weiliang根据美国联邦选举委员会最新披露,特斯拉CEO马斯克在过去三个月内向他为川普设立的政治行动委员会 America PAC 捐赠了7500万美元。与此同时,为了提升川普在关键摇摆州宾夕法尼亚的支持率,马斯克宣布将连续六天在宾州展开助选演讲活动。
Alex特朗普家族的World Liberty Financial(WLFI)项目在周二推出代币公开发售,但仅售出4%的代币,筹资金额约1245万美元,远低于预期的3亿美元募资目标。
AlexFracture Labs has sued Jump Trading, accusing it of running a "pump and dump" scheme with DIO tokens, allegedly manipulating the token's price for profit during FractureLabs' fundraising.
CatherineWeb3 projects are increasingly integrating Telegram into their user engagement strategies, as seen with the success of games like Hamster Kombat attracting over 300 million users. Robby Yung, CEO of Animoca Brands, predicts that having a Telegram strategy will become essential for onboarding users and expanding reach in the Web3 ecosystem.
AnaisSiam Commercial Bank has introduced Thailand's first stablecoin remittance solution, enabling 24/7 cross-border payments with enhanced security and efficiency. This initiative sets a new standard for financial transactions in the region.
KikyoDonald Trump has raised approximately $7.5 million in cryptocurrency donations for his 2024 presidential campaign, with major contributions coming from Bitcoin, Ether, and XRP. The influx of crypto donations reflects his shift from a critic to a pro-crypto candidate, gaining support from key figures in the industry.
AnaisESMA plans to propose mandatory external audits of crypto companies' cybersecurity following a $1.5 billion theft in early 2024, an 84% rise from 2023, to strengthen defenses and protect users.
Catherine