OKX Temporarily Discontinue DEX Services Due to Suspicion of Abuse by Lazarus Group

Stay connected with BizTech Community—follow us on Instagram and Facebook for the latest news and reviews delivered straight to you.

In a move that shook the crypto industry, OKX, one of the world’s leading crypto exchanges, announced the temporary suspension of their decentralized exchange aggregator (DEX) service.

This decision was made in response to security threats from the North Korean hacker group Lazarus Group. The suspension was not without reason, but rather a proactive step to prevent abuse that could harm users and the platform’s reputation.

Threat from the Lazarus Group

The Lazarus Group, a hacker group allegedly supported by the North Korean government, has long been known as a major player in global cyber attacks. The US government has even offered a reward of up to $5 million for information that can identify members of this group. In recent years, the group has increasingly targeted the crypto sector, especially through decentralized finance (DeFi) platforms that are vulnerable to exploitation.

OKX stated that they detected a coordinated attempt by the Lazarus Group to misuse their DEX service. “We have identified suspicious activity and decided to temporarily suspend our aggregator service. This is a preventive measure to protect our users,” explained an OKX representative in an official statement.

Links to the Bybit Hacking Case

This incident cannot be separated from the major hacking case that befell Bybit in January 2024. At that time, Bybit suffered losses of up to $1.5 billion due to a cyber attack also masterminded by the Lazarus Group. Ben Zhou, CEO of Bybit, revealed that around $100 million of the stolen funds had flowed through the OKX Web3 platform.

Zhou’s statement sparked speculation about OKX’s involvement in laundering hacked funds. However, Haider Rafique, OKX’s Global CMO, strongly denied the claim. “We are not involved in money laundering. On the contrary, we are working hard to prevent the misuse of our services by malicious actors,” Rafique said.

OKX Preventive Measures

In an effort to protect users and prevent further misuse, OKX has implemented several new security measures.

First, they launched an advanced hacker address detection system, which can block suspicious addresses in real-time. Second, OKX froze funds suspected of being linked to illegal activities and increased collaboration with regulatory authorities.

In addition, OKX also temporarily suspended its DEX aggregator service to fix the security breach. “We are launching a new security feature to ensure that our service cannot be misused by groups like the Lazarus Group,” explained an OKX representative.

Accusations and Clarification

The incident was also colored by accusations from Bybit that OKX was uncooperative in efforts to recover the stolen funds. Bybit even claimed that OKX refused a request to block the wallet address used by the Lazarus Group.

However, OKX strongly denied these allegations. “We have never refused a request to block a suspicious address. These allegations are baseless and are only intended to damage our reputation,” Rafique said in a statement.

The Lazarus Group’s Cunning Strategy

The Lazarus Group is known for its cunning strategy of launching attacks. They often take advantage of DeFi platforms and other crypto services to launder hacked funds. One of the platforms they use is eXch, which is also accused of being involved in money laundering.

Unlike OKX, eXch rejected Bybit’s request to block the wallet address used by the Lazarus Group. “We don’t launder money for any group. These accusations only come from those who want to eliminate on-chain privacy,” wrote an eXch representative on the Bitcointalk forum.

The Urgency of Stricter Regulation

This incident further reinforces the importance of stricter regulation in the DeFi and crypto sectors. Without adequate regulation, crypto platforms are vulnerable to abuse by malicious actors for money laundering and other illegal activities.

Several global regulators, including in Europe and the United States, have begun investigating Web3 platforms and crypto wallets for alleged involvement in money laundering. These investigations are expected to encourage the implementation of higher security standards across the industry.

Security Challenges in the Crypto Industry

The crypto industry continues to face complex security challenges. Threats such as hacking, phishing, and misuse of DeFi services are increasing as the crypto market grows. Platforms like OKX must continue to innovate in security to protect users and their assets.

“We are committed to strengthening our security and working with regulators to ensure the crypto industry is a safe place for all users,” said Rafique.

Conclusion

OKX’s temporary suspension of its DEX aggregator service is an important step in dealing with increasingly complex security threats. While this decision may cause inconvenience to some users, it is necessary to prevent more serious abuse.

This incident also highlights the need for stricter regulation and collaboration between crypto platforms and regulatory authorities. By continuing to improve security and transparency, the crypto industry can build greater public trust and become more resilient in the face of future threats.