Atomic Wallet hack
More than $100M was drained from users of the non-custodial Atomic Wallet beginning June 3, 2023, affecting 5,000+ wallets. Elliptic attributed the theft to North Korea's Lazarus Group based on laundering patterns; the root cause was never fully disclosed.
Also known as: Atomic Wallet
Summary
Atomic Wallet is a non-custodial (self-custody) crypto wallet. Beginning around June 3, 2023, more than $100 million in assets was drained from users' wallets; Elliptic said it was tracking over 5,000 compromised addresses. The company said fewer than 1% of users were affected. [1][2]
Attribution and cause
Blockchain-analytics firm Elliptic attributed the theft "with a high level of confidence" to North Korea's Lazarus Group, citing laundering steps (including use of the Sinbad mixer and Garantex) that matched prior Lazarus thefts. Atomic Wallet did not publicly disclose a definitive root cause; analysts speculated about a possible flaw exposing private keys or a supply-chain/malware compromise. [1][2]
Bracketed numbers refer to the numbered sources listed below.
People & entities involved
Sources (2)
See also
- Loci (LOCIcoin)TokensA 2017–2018 ICO for 'LOCIcoin' tied to the InnVenn IP-search platform. The SEC charged Loci and CEO John Wise with fraud for raising $7.6M on false claims about revenue, headcount, and user base; Wise also misused investor funds. Settled with a $7.6M penalty and an officer/director bar.
- Blockchain Terminal (BCT)TokensA 2017–2018 ICO (BCT tokens, ~$30M) for a 'Blockchain Terminal' — a Bloomberg-style crypto trading terminal. The SEC and DOJ said convicted ex-hedge-funder Boaz Manor secretly ran it under a fake identity ('Shaun MacDonald'), using associate Edith Pardo as a front, and lied about the product's adoption.
- Crowd Machine (CMCT)Tokens
This page was last updated on Jun 8, 2026. View revision history.