In a blog post on Thursday, the business claimed that its former chief information security officer had arbitrarily compromised the company firewall prior to the $81.5 million hack on its cross-chain protocol Orbit Bridge. Ozys withheld the name of the departing worker.
According to a report by South Korean news agency News1 on Thursday, the company has filed a lawsuit seeking damages against its former chief information officer and has also requested that the local police look into the possibility of the former employee being involved with the breach.
Ozys claims that on November 22, two days after the worker requested a voluntary resignation, the former security chief made a number of modifications to the internal firewall. They allegedly quit the company on December 6th without informing them of the security setting modifications, which Ozys learned about on January 10.
$50 million in stablecoins (30 million USDT, 10 million DAI, and 10 million USDC), 231 wBTC (about $10 million), and 9,500 ether (around $21.5 million) were transferred to eight new wallets on January 1st through a “unidentified access” to Orbit Bridge.
Ozys stated in the blog post that it has notified the National Intelligence Service and is looking into the likelihood that the hacking group Lazarus, which is supported by North Korea, was involved in the attack. Theori, a cybersecurity firm, the Korea Internet & Security Agency, and the South Korean police are other partners with the company.
Ozys CEO Choi Jin-han stated in the statement, “We will mobilize all resources, no matter how long it takes to track down the attacker, and ultimately work to the end to freeze and recover the seized assets.” The business also promised to provide users with a recovery plan as soon as it becomes available.
Ozys did not answer The Block’s request for more information and remarks right away.