Safe company revealed fresh details of a major hack on the Bybit exchange that led to the theft of $1.5 billion worth of Ethereum (ETH). According to the preliminary report, the attack began with the infection of a macOS laptop belonging to a Safe developer. Investigations show that the developer unintentionally infected their system while working on a Docker project connected to the suspicious domain getstockprice.com. After obtaining active AWS tokens, the attackers managed to bypass the Multi-Factor Authentication (MFA) system and infiltrate Safe company’s AWS repository. This unauthorized access allowed the attackers to manipulate Safe’s multi-signature wallet interface used by Bybit and change the destination addresses for fund transfers. In response to this incident, Safe announced significant enhancements to its security measures.
