Ad
CryptoSlate on Substack
Your daily dose of must-have crypto news and deep dives. Direct to your inbox.
Join 75k subscribers
 Ad
News
Bitcoin halving interest higher than ever with under 12 hours left to go Tether coming to Telegram through TON blockchain amid $11 billion wider minting spree Bitcoin soars to $65,000 as Israel-Iran sparring looks to conclude IMF says Bitcoin has become necessary financial tool for preserving wealth amid financial instability Meta announces Llama 3, launches dedicated AI web portal
Blender coin mixer may have rebranded, likely remains in use by Lazarus Group Blender coin mixer may have rebranded, likely remains in use by Lazarus Group Mike Dalton · 1 year ago · 1 min read
NewsHacks

Blender coin mixer may have rebranded, likely remains in use by Lazarus Group

The laundering tool favored by North Korean groups may now exist as "Sinbad."

Mike Dalton
Feb. 14, 2023 at 5:00 am UTC
1 min read
Updated: Feb. 14, 2023 at 2:55 am UTC
Blender coin mixer may have rebranded, likely remains in use by Lazarus Group

Cover art/illustration via CryptoSlate. Image includes combined content which may include AI-generated content.

The coin mixer Blender has likely rebranded and could still be in use among North Korean groups, according to a report from analytics firm Elliptic on Feb. 13.

Elliptic says that although Blender stopped operating in April 2022, it has likely rebranded as “Sinbad” based on several facts and patterns it has observed.

Blender’s operator is suspected of sending $22 million of early Bitcoin transactions to Sinbad, plus a separate amount sent to a “service” address. Blender’s operator likely sent Bitcoin to a wallet that also paid Sinbad’s promoters.

Elliptic also noted several similarities between Sinbad and Blender by comparing their on-chain behavior, various features, and respective websites. The firm noted that both mixers could be tied to Russia through their supported languages and websites.

Elliptic also observed that Blender and Sinbad were used in two blockchain attacks by North Korea’s state-sponsored Lazarus Group.

Lazarus attacked Ronin Bridge (associated with the blockchain game Axie Infinity) for more than $540 million in March 2022. Following that attack, Lazarus managed to launder $475 million of that amount through various coin mixers, one of which was Blender.

Lazarus then attacked the cross-chain bridge Horizon in June 2022, stealing $100 million. When Sinbad went live months later in October, Lazarus used it to launder nearly $100 million stolen from Horizon and other targets, Elliptic said.

A separate mixer — Tornado Cash — was also used in both attacks. It continues to operate despite the sanctions imposed by the U.S. Treasury and its Office of Foreign Assets Control (OFAC) in August 2022. Elliptic said that Sinbad could face similar sanctions, adding that Blender and Sinbad addresses are already flagged in its compliance services.

Despite their use in money laundering and recent attention from enforcement, coin mixers have legitimate uses and can be used to perform private transactions.

Mentioned in this article
Bitcoin Tornado Cash Elliptic
Posted In: Hacks, Privacy
Author

Mike Dalton

Journalist at CryptoSlate

Before transitioning to crypto writing in 2018, Mike studied library and information sciences. Currently, he resides on Canada's West Coast.

Latest Alpha Market Report
Dial H for Halving: Unpacking the technicalities of Bitcoin’s halving
Available exclusively via

Dial H for Halving: Unpacking the technicalities of Bitcoin’s halving

Andjela Radmilac · 4 days ago

CryptoSlate's latest market report dives deep into the Bitcoin halvings, exploring its technical underpinnings, the historical context of previous halvings, and their long-term impacts on the network.

Latest Press Releases
View All

Disclaimer: Our writers' opinions are solely their own and do not reflect the opinion of CryptoSlate. None of the information you read on CryptoSlate should be taken as investment advice, nor does CryptoSlate endorse any project that may be mentioned or linked to in this article. Buying and trading cryptocurrencies should be considered a high-risk activity. Please do your own due diligence before taking any action related to content within this article. Finally, CryptoSlate takes no responsibility should you lose money trading cryptocurrencies.

Latest Alpha

In this article

Bitcoin BTC (24h)
$64,325.10 +1.53%
Vol: $48.95B MCap: $1.27T

Bitcoin, a decentralized currency that defies the sway of central banks or administrators, transacts electronically, circumventing intermediaries via a peer-to-peer network.

More about Bitcoin
Tornado Cash TORN (24h)
$2.30199 +1.13%

Tornado Cash is a decentralized, non-custodial privacy solution built on Ethereum.

More about Tornado Cash

Elliptic

Research Company in Europe

Elliptic empowers financial institutions and crypto businesses to confidently manage risk and meet AML regulatory compliance worldwide.

More about Elliptic

Featured Story

Advertise Here
Ad
CryptoSlate on X x.com/cryptoslate
Stay ahead in the crypto game: Follow us on X for daily updates and analysis.
Join 50k followers
 Ad