TechFlow news — On February 26, Bybit released an interim report on the $1.5 billion theft incident, stating that the breach resulted from a vulnerability in Safe's infrastructure and that Bybit’s related infrastructure showed no anomalies.
The Safe team responded, saying, "Forensic review of the Lazarus Group's targeted attack on Bybit concluded that the attack on Bybit's Safe was achieved through the compromise of a Safe developer's machine, resulting in the proposal of a disguised malicious transaction.
External security researchers' forensic analysis did not identify any vulnerabilities in the Safe smart contracts or in the source code of its frontend and services. Following the recent incident, the Safe team has conducted a thorough investigation and has now restored Safe operations on the Ethereum mainnet via a phased rollout. The Safe team has fully rebuilt and reconfigured all infrastructure, rotated all credentials, and ensured that the attack vectors have been completely eliminated.
Once the final investigation results are available, the Safe team will publish a comprehensive post-mortem report."
