Safe: Forensic review by external security researchers did not indicate vulnerabilities in the wallet smart contracts or front-end and service source code

Odaily reports that Safe has posted a response on the X platform regarding Bybit's hacking forensics report. The forensic review of the targeted attack by the Lazarus Group against Bybit concluded that the attack on Bybit's Safe was carried out through a compromised Safe{Wallet} developer machine, leading to the impersonation of malicious transactions. Lazarus is a North Korean hacker group supported by the government, known for conducting complex social engineering attacks on developer credentials, sometimes combined with zero-day vulnerabilities. The external security researcher's forensic review did not reveal any vulnerabilities in the Safe smart contract or the source code of the frontend and services. After the recent incident, the Safe{Wallet} team has conducted a thorough investigation and has gradually restored the Safe{Wallet} on the Ethereum mainnet. The Safe{Wallet} team has completely rebuilt and reconfigured all infrastructure and rotated all credentials to ensure the complete elimination of the attack vector. The Safe{Wallet} team will release a full post-incident analysis once the final investigation results are available. The Safe{Wallet} frontend is still operational and has taken additional security measures. However, users need to be extra cautious and vigilant when signing transactions.