{"id":32436,"date":"2024-12-31T20:10:37","date_gmt":"2024-12-31T20:10:37","guid":{"rendered":"https:\/\/mycryptomania.com\/?p=32436"},"modified":"2024-12-31T20:10:37","modified_gmt":"2024-12-31T20:10:37","slug":"notorious-blockchain-bandit-resurfaces-moves-51000-eth-in-largest-fund-transfer","status":"publish","type":"post","link":"https:\/\/mycryptomania.com\/?p=32436","title":{"rendered":"Notorious \u2018Blockchain Bandit\u2019 Resurfaces, Moves 51,000 ETH in Largest Fund Transfer"},"content":{"rendered":"<p>After a brief hiatus, the notorious \u201cBlockchain Bandit\u201d has re-emerged as the year ends, consolidating a staggering 51,000 ETH, valued at approximately $172 million, into a single multisig wallet.<\/p>\n<p>This transfer was made on December 30.<\/p>\n<h2>\u201cBlockchain Bandit\u201d Returns<\/h2>\n<p>In the latest\u00a0<a href=\"https:\/\/t.me\/investigations\/194\" target=\"_blank\" rel=\"noopener\">update<\/a>, prominent blockchain investigator ZachXBT revealed that the consolidation originated from 10 wallets, which have been dormant for almost two years, with the last activity being\u00a0<a href=\"https:\/\/cryptopotato.com\/infamous-blockchain-bandit-begins-moving-his-stash-6-years-later\/\" target=\"_blank\" rel=\"noopener\">flagged<\/a> in January 2023. Alongside the Ether transfer, 470 BTC were also moved.<\/p>\n<p>The Blockchain Bandit earned infamy between 2016 and 2018 through an insidious technique called \u201c<a href=\"https:\/\/www.ise.io\/casestudies\/ethercombing\/\" target=\"_blank\" rel=\"noopener\">Ethercombing<\/a>.\u201d By exploiting cryptographic vulnerabilities, the attacker systematically guessed weak private keys, which were often generated by faulty random number algorithms or misconfigured wallets.<\/p>\n<p>This method allowed the malicious entity to steal more than 45,000 ETH across 49,060 transactions by compromising 732 private keys. While brute-forcing private keys is generally deemed improbable due to their vast numerical range, the Bandit capitalized on predictable flaws such as non-random key generation and poorly implemented recovery phrases.<\/p>\n<p>Cybersecurity analysts suggest that state-sponsored actors, possibly North Korean hacker groups, could be behind the attacks, noting parallels with other large-scale crypto thefts. Such groups are known to target cryptocurrency platforms to fund illicit operations, including weapons programs.<\/p>\n<p>The Bandit\u2019s recent activity \u2013 coupled with the use of multi-signature wallets \u2013 signals preparations for potentially laundering the funds through mixers or decentralized exchanges to obscure their origins.<\/p>\n<h2>From Fake Meetings to Seed Phrase Traps<\/h2>\n<p>This attacker\u2019s resurgence comes amid a wider uptick in crypto cybercrime as fraudsters develop new strategies to ensnare unsuspecting targets. Earlier this month, hackers were reported to have <a href=\"https:\/\/cryptopotato.com\/zoom-meeting-scam-crypto-users-fall-prey-to-potential-russian-linked-hackers\/\" target=\"_blank\" rel=\"noopener\">exploited<\/a> fake Zoom meeting links to target crypto users and steal sensitive credentials as well as digital assets.<\/p>\n<p>SlowMist traced the malware\u2019s code to Russian-linked operatives, revealing over $1 million converted to ETH.<\/p>\n<p>Another scam <a href=\"https:\/\/cryptopotato.com\/crypto-scammers-bait-thieves-with-public-seed-phrases-in-new-scheme-kaspersky\/\" target=\"_blank\" rel=\"noopener\">targeted<\/a> opportunistic thieves by sharing seed phrases of fake crypto wallets. Once accessed, the wallets demand TRX for transaction fees, rerouting funds to scammers instead. Kaspersky warns that this scheme, disguised as a beginner\u2019s mistake, manipulates thieves into becoming victims of their own greed.<\/p>\n<p>The post <a href=\"https:\/\/cryptopotato.com\/notorious-blockchain-bandit-resurfaces-moves-51000-eth-in-largest-fund-transfer\/\">Notorious \u2018Blockchain Bandit\u2019 Resurfaces, Moves 51,000 ETH in Largest Fund Transfer<\/a> appeared first on <a href=\"https:\/\/cryptopotato.com\/\">CryptoPotato<\/a>.<\/p>","protected":false},"excerpt":{"rendered":"<p>After a brief hiatus, the notorious \u201cBlockchain Bandit\u201d has re-emerged as the year ends, consolidating a staggering 51,000 ETH, valued at approximately $172 million, into a single multisig wallet. This transfer was made on December 30. \u201cBlockchain Bandit\u201d Returns In the latest\u00a0update, prominent blockchain investigator ZachXBT revealed that the consolidation originated from 10 wallets, which [&hellip;]<\/p>\n","protected":false},"author":0,"featured_media":32437,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[],"class_list":["post-32436","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-discovery"],"_links":{"self":[{"href":"https:\/\/mycryptomania.com\/index.php?rest_route=\/wp\/v2\/posts\/32436"}],"collection":[{"href":"https:\/\/mycryptomania.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mycryptomania.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/mycryptomania.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=32436"}],"version-history":[{"count":0,"href":"https:\/\/mycryptomania.com\/index.php?rest_route=\/wp\/v2\/posts\/32436\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mycryptomania.com\/index.php?rest_route=\/wp\/v2\/media\/32437"}],"wp:attachment":[{"href":"https:\/\/mycryptomania.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=32436"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mycryptomania.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=32436"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mycryptomania.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=32436"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}