On Tuesday, the Euler Finance exploiter, which held USD 200 million in stolen funds in its wallet, received an encrypted message from a North Korean hacker group known as Lazarus.
The message, sent via a wallet address linked to the Ronin Bridge attackers, requested that the Euler’s exploiter decrypt the message with the private keys. According to experts, the hacker’s intention was to create a phishing scheme to obtain login credentials and drain the stolen funds from the wallet. It is worth noting that this is not the first instance of interaction between the two hackers.
After Euler Finance experienced a security breach on March 13 resulting in a loss of around USD 200 million, the platform’s exploiter sent 100 Ethereum to the Ronin attacker. Euler Finance is a decentralized finance (DeFi) protocol based on the Ethereum blockchain that enables users to lend and borrow various crypto assets. To address the situation, the victim firm has been engaging in on-chain communication with the hacker in an attempt to settle the matter.
The situation became more confusing when the Lazarus hacker group got involved, and it is unclear what the hacker might do next. However, it is interesting to note that the hacker is cooperating with Euler Finance and has already returned 3,000 ETHs (around USD 5.4 million) to the platform. The involvement of the Lazarus group has raised concerns, and experts are advising caution when dealing with the hacker.