Former Orbit Bridge Employee Suspected of Aiding $80 Million Attack

South Korean company Ozys, the developer behind the cross-chain bridge Orbit Bridge, accused a former employee of aiding a recent attack on the protocol.

According to preliminary investigation results, on November 22, 2023, the Chief Information Security Officer weakened the internal firewall settings. Two days earlier, this employee had submitted a resignation letter.

He left the position on December 6, but did not inform the company about the changes made to the security settings. Ozys has not disclosed the former employee’s name.

According to local media, the company has contacted the police to verify this information and has filed a lawsuit against the former colleague for damages.

Currently, the Ozys team, in collaboration with cybersecurity company Theori, the National Intelligence Service, the police, and the local Internet and Security Agency, is investigating the incident. They are specifically examining the involvement of North Korean hackers from the Lazarus Group.

The company has promised to inform users about the plan for fund recovery and its implementation timeline.

Back in December 31, 2023, the cross-chain bridge Orbit Bridge was hacked. The attackers withdrew crypto assets worth over $80 million.