In a devastating blow to the cryptocurrency world, Bybit, a leading Dubai-based exchange, has been struck by a historic $1.5 billion hack, cementing its place as the largest theft in the industry’s history. The breach, which unfolded on February 21, 2025, has sent shockwaves through the digital asset community, exposing the persistent vulnerabilities that haunt even the most prominent platforms. As reported by Sharjah News, this incident underscores the urgent need for enhanced security measures in an industry striving for mainstream legitimacy.
The hack targeted Bybit’s Ethereum cold wallet, a supposedly secure offline storage system designed to protect assets from cyber threats. In a matter of hours, hackers siphoned off approximately 401,000 ETH—valued at nearly $1.5 billion—exploiting a routine transfer process between the cold wallet and an online “warm” wallet used for daily trading. Bybit’s CEO, Ben Zhou, revealed that the attackers employed a sophisticated technique, manipulating the transaction interface to deceive wallet signers into approving malicious smart contract changes. This breach not only shattered Bybit’s defenses but also dwarfed previous crypto heists, such as the $611 million Poly Network theft in 2021.
Photo courtesy: Canva
The fallout was immediate and chaotic. News of the hack triggered a flood of withdrawal requests, with over 350,000 users attempting to secure their funds. Despite the panic, Zhou assured clients that Bybit remained solvent, emphasizing that customer assets were fully backed and that the exchange’s $20 billion in reserves could absorb the loss. To stabilize operations, Bybit secured emergency loans and deposits from industry partners, replenishing its Ethereum reserves within 72 hours—an impressive feat hailed as a testament to crypto community solidarity.
Questions now swirl about the culprits behind this audacious attack. Blockchain analysts, including Elliptic, have pointed fingers at North Korea’s Lazarus Group, a notorious state-sponsored hacking collective linked to billions in crypto thefts. As investigations deepen, Bybit has launched a recovery bounty program, offering 10% of retrieved funds to cybersecurity experts who assist in tracking down the stolen assets. While the exchange scrambles to rebuild trust, this $1.5 billion hack serves as a stark reminder: in the high-stakes world of cryptocurrency, even the giants are not immune to collapse. The industry must evolve—or risk further ruin.
Source:
- Sharjah News. (2025, February 23). “Bybit Crypto Exchange Suffers $1.5 Billion Hack, Industry’s Largest.” Link.
