BitMEX's security researchers have identified significant operational security weaknesses in the Lazarus Group, a North Korean state-sponsored hacking network. After a detailed analysis, they reported that at least one hacker may have inadvertently exposed their real IP address, tracing back to Jiaxing, China. Additionally, they accessed a Supabase database instance used by the hackers. The research highlights a disparity within the group, showcasing less skilled social engineering teams that mislead victims alongside more advanced tech hackers, indicating a fragmentation into sub-groups with varying capabilities. This revelation comes amid a growing global concern regarding the group's activities and associated scams, particularly targeting cryptocurrency users.

Source 🔗