OKX Halts DEX Aggregator Amid Lazarus Group Exploitation Concerns

OKX, a prominent Cryptocurrency exchange, has temporarily suspended its decentralized exchange aggregator service following the detection of a coordinated attempt by the North Korean hacking collective, Lazarus Group, to exploit its decentralized finance offerings. This proactive measure aims to bolster security and prevent further misuse of the platform.

The exchange announced that, after consulting with regulators, it decided to pause its DEX aggregator services to implement additional security upgrades. This suspension allows OKX to address incomplete tagging on blockchain explorers and enhance its systems to prevent malicious activities. The company emphasized its commitment to transparency and is collaborating with blockchain explorers to ensure accurate labeling of transactions, thereby preventing the misidentification of its aggregator as the point of trade.

In response to the detected threats, OKX has already rolled out several security enhancements. These include a hacker address detection system for its Web3 DEX aggregator and a real-time tracking mechanism to monitor and block malicious addresses within its centralized exchange. These measures are part of OKX's ongoing efforts to stay ahead of cyber threats and protect its users.

Despite the suspension of the DEX aggregator, OKX's wallet services remain operational. However, the creation of new wallets has been temporarily paused in select markets during this period of heightened security measures. The exchange has not provided a specific timeline for the resumption of its DEX aggregator services, indicating that the suspension will remain in effect until the necessary security upgrades are fully implemented.

The decision to suspend the DEX aggregator comes amid reports of European Union financial watchdogs investigating OKX's Web3 services and wallet offerings for their alleged role in laundering funds from a significant hack targeting another cryptocurrency exchange, Bybit. According to Bybit CEO Ben Zhou, approximately $100 million from the $1.5 billion hack had been laundered through OKX's Web3 platform, with a portion of the funds now untraceable.

OKX has refuted these allegations, stating that such reports are misleading. The exchange asserts that upon learning of the Bybit hack, it took immediate action by freezing associated funds from moving into its centralized exchange and developing new hack detection features. OKX maintains that its Web3 DEX aggregator is not a custodian of customer assets but rather serves to provide access to liquidity across multiple protocols, offering users an efficient peer-to-peer trading experience.

The Lazarus Group, believed to be linked to the North Korean government, has been implicated in several high-profile cyberattacks targeting financial institutions and cryptocurrency platforms. Their involvement in the attempted exploitation of OKX's DeFi services underscores the persistent threats facing the cryptocurrency industry.

In light of these events, OKX has reiterated its commitment to combating financial crime and enhancing the security of its platforms. The exchange has implemented measures such as prohibited markets' IP blocking and a real-time black address detection and blocking system. OKX CEO Star Xu emphasized the company's dedication to building industry control standards in collaboration with global partners to ensure a secure and transparent trading environment.

Arabian Post – Crypto News Network

MENAFN18032025000152002308ID1109326751