In August 2022, an American-Israeli National, an American-Israeli National in Israel, has been arrested in Israel for his alleged involvement in exploiting the nomadic bridge smart-contrast, which allowed hackers to cypon $ 190 million.
Blockchain Intelligence platform TRM Labs gave significant information to international law enforcement officers, identifying Morel, which is believed to have played a central role in one of the largest hacks in DEFI history.
“Suspected, American-Israel dual national Ose Morel, was coordinated by the Israeli police in Jerusalem with DOJ, FBI and Interpol,” TRM labs explained,
According to the Blockchain Intelligence firm, Morel will soon be extradited to the United States, the legal preceding has already been approved.
Moril’s link for Nomad Bridge Hack
The nomad bridge is a cross-chain communication standard that allows users to move assets between different blockchains.
On August 1, 2022, the attackers exploited an important vulnerability offered in their replica smart contract updates, especially in the ‘process () function’.
Although the message was about to verify the message evidence before issuing funds to the contract, a misconception allowed any message to be accepted with the right root hash, even though the underlying evidence was invalid.
Once a single assailant came to know about the defect, the method of exploitation was quickly raised by hundreds of other wallets, as it involved in copying a specific transaction format.
The “crowd-style” attack led a chaotic and decentralized looting of the bridge, which was more than $ 190 million in Eth, USDC, WBTC and ERC-20 tokens.
Source: TRM Labs
TRM Labs comment that it was very easy to take advantage of vulnerability, so even people without hacking skills or deep blockchain knowledge joined exploitation. However, veteran North Korean actors were also implicated.
Osei Morel himself was not written or started the exploitation code, but TRM Labs says he “played a central role,” and evidence suggests that he conspired to rob the large amounts stolen during exploitation with others.
The wallets associated with Morel found the stolen property within hours of the bridge, suggesting close coordination with the early attackers.
Data from TMR Labs suggests that Morel used ‘chain-hoping’ to transfer stolen tokens into various blockchain, to reduce the origin of tornado cash mixer funds, and swap Ath into privacy-busting monro (XMR) and dash.
Source: TRM Labs
To cash in income, he used non-Castodial exchanges, OTC brokers and offshore bank accounts tied to fake or opaque legal institutions, and converted some crypto into fiat through provider with no KYC standards without any KYC standards.
Despite all these obedient efforts and time since these incidents, the blockchain transaction analysis still found enough clues to highlight the identity of Morel, resulting in his arrest.
Mograel’s arrest is another suspected hacker, a Russian-Israeli citizen named Alexander Gurevich, who was caught using documents under a new name at Ben Gurian Airport on 1 May, Alexander block, he was officially changed.
According to prosecutors, Gurevich exploited the Nomad Bridge Dosha and withdrew about $ 2.89 million in a digital token. After this, others were taken advantage of finding this issue and for Cyphon Assets.
Jerusalem Post Reports On August 4, 2022, Gurevich approached the Nomad Chief Technology Officer and admitted that he was examining Nomad for weaknesses, apologizing for trouble and later demanding a reward of $ 500,000 to identify vulgarity.
Based on the analysis of 14M malicious tasks, search for the top 10 MITERAT & CK techniques behind the 93% attacks and how to defend them against them.
