They are offering a $20m bounty to the Lazarus group out of the $200m scammed.
Do you have a source for this statement? It's not in your screenshot, and I haven't found any evidence that the Lazarus Group is behind this.A $20M bug bounty might work for a hacker who's in over his head, and $20M is enough to lead a very luxurious life without having to launder $200M and being on the lookout for the rest of your life. But if it's North Korean state hackers, none of this applies. They're lucky if they get food tonight.
The Lazarus group are the number one suspect as of now although investigation is still ongoing.
@OP we already have Mixin Safe hack thread ([url]https://bitcointalk.org/index.php?topic=5467994.0)so[/url] why not share this there instead spreading conversation across several threads.
I didn't realise it until now because I was just reading the discussion on the project's main ANN and didn't think it was proper to discuss it there because the OP could easily lock the thread now that the service is down. However, my updates are more appropriate for this board. More updates!
Could it be an inside job?
One year before the hack:
June 18, 2022: 0x1795, an address connected to the hack, received 5 $ETH from Mixin (0xB0Cf). This address transferred 51 $ETH to address 0xd07A on August 6, 2021 and deposited 5.9 $ETH on Binance (0x4b83) on July 5, 2022.
October 20, 2022: ETH miner 0xab3B sent 118 $ETH to 0xfc73, a user of Gate.io and OKX.
November 9, 2022: Mixin address(0xB0Cf) sent 10,000 $ETH to 0x5D5a.
September 16, 2023: 0x5D5a sent 100 $ETH in gas to 0x4701.
During the hack:
September 22, 2023: 0xfc73 sent 0.5 $ETH in gas to 0x52e8, a wallet connected to the Mixin hack. This wallet holds $94M worth of $ETH.
September 22, 2023: 0xd07A sent 50 $ETH as gas to 0xb5d6, another hack-related wallet holding $71,000 in $ETH, moments before the attack. This transfer was done so that the hacker could disperse tokens from Mixin's addresses through 0x52E8 for the attack.
September 22, 2023: 0xb5d6 (hacker wallet) sent 0.3 $ETH as gas to 0x3b5f, an address that swapped USDT into DAI to avoid being frozen out of stolen funds.
September 23, 2023: Disperse.app address 0xD152 sent 0.0025 $ETH in gas to Mixin wallet 0x68EF. It is likely that the hacker used Disperse.app to distribute tokens.
After the hack:
September 23, 2023: One hour after the hack, Mixin user 0x6e05 retrieved 30 $ETH from the platform, perhaps sensing that a hack was taking place.
September 25, 2023: Mixin announced the stoppage of deposits and withdrawals, two days after it got hacked for $200M.
September 25, 2023: Mixin wallets sent 988 $UNI to a hacker-related address (0xCD65) that now holds $8M in crypto assets.
September 25-26, 2023: Mixin wallets sent $9M worth of crypto funds, including $HMT, $UNI, $ETH, and $USDC, to 0x4701.
September 26, 2023: 0x68EF, a Mixin wallet that received gas from the hacker (0xD152), transferred $USDC and $HMT to 0x4701. It is likely that 0x4701 is an address controlled by Mixin to secure their remaining tokens, although Mixin has yet to confirm this.
More can be found Here for the Blockchain specialists.
