Cyber attacks is coming back to haunt the crypto industry. This time, e-commerce platform Bitrefill crypto became a victim, with strong suspicions that the well-known hacking group from North Korea, Lazarus Group, was involved.
The attack started on an employee’s laptop
This incident occurred on March 1, when hackers managed to hack the laptop of one of Bitrefill’s employees. From this gap, they then infiltrated the internal system and targeted the company’s hot wallet.
Bitrefill disclose that the attack was carried out using malwaretracking on-chainas well as infrastructure utilization such as IP addresses and email. This pattern is considered very similar to the method used by the Lazarus Group and its affiliate, BlueNoroff.
“We found many similarities between this attack and previous cyber attacks carried out by Lazarus or BlueNoroff against other crypto companies,” wrote Bitrefill in X, Tuesday (17/03/2026).
ADVERTISEMENT
Hackers Break into Jambi Bank, Rp. 19 Billion in Funds Ends Up in Crypto
Apart from draining funds from hot walletsthe perpetrator also accessed around 18,500 purchase data. However, Bitrefill emphasized that only a small portion of the information was exposed and there was no indication of a complete database leak.
Data Accessed, Funds Stolen, Operations Continue
Bitrefill explained that the main motive for this attack was financial. This can be seen from the activities of the Lazarus Group which only carries out a number of activities query to search for valuable assets, such as crypto and gift cards.
“The attackers ran a number query limited to understanding what could be stolen, including crypto assets and Bitrefill gift card stock,” the company explained.
Although the amount of the loss was not disclosed, Bitrefill confirmed that all losses would be covered using the company’s operational funds. This step was taken to maintain user trust.
The company also confirmed that all services are now running normally. On the other hand, Bitrefill claims to have improved its security system and is collaborating with cybersecurity authorities and firms to investigate hacking incident.
“We have significantly improved our cybersecurity practices and will continue to learn from this incident to ensure user funds and data remain safe,” he added.
Lazarus Group Still a Big Threat
The attack on Bitrefill confirms that Lazarus Group is still a major threat in the crypto industry. This group, thought to be linked to North Korea, has long been known as the mastermind behind various major hacks.
One of the most striking cases is Bybit hack which caused losses of up to US$1.4 billion. Apart from that, Lazarus is also often associated with attacks on various people platforms other cryptos, incl exchange from South Korea, Upbit.
With this track record, the pattern of attacks that has emerged again in the Bitrefill case further strengthens the suspicion of their involvement.
This incident confirms that security remains crucial in the crypto industry. Amidst increasing adoption, threats from hackers like the Lazarus Group is still real and cannot be ignored.
That’s the summary crypto news today which you can watch to keep up with world developments digital assets And blockchain technology. Stay tuned Blockchain Media Indonesia For updates the latest about the crypto market, bitcoin news, and even study guides crypto for those of you who are still beginners. [dp]
Disclaimer: Content in Blockchainmedia.id is informational only, not investment or legal advice. All financial decisions are the sole responsibility of the reader.
