North Korea's notorious Lazarus Group struck again last year, draining $1.5 billion from crypto exchange Bybit in a brazen February 2025 heist that dominated headlines. Fast forward to late February, hackers consolidated 106,000 USDT and 338,000 USDC into a single theft address, prompting urgent freeze requests from law enforcement, Bybit, and experts. Tether froze the assets within hours, but Circle lagged by a full day, igniting fresh outrage in the crypto community.

ZachXBT Calls Out Circle's Inaction

On-chain sleuth ZachXBT didn't mince words in his April 3 tweet, blasting Circle as a "bad actor" for the 24-hour delay despite zero obfuscation of the funds. This incident echoes the group's relentless attacks over the past year, including a string of exploits on DeFi protocols that siphoned millions since October 2025. Crypto exchanges and stablecoin issuers now face mounting pressure to tighten security protocols, as regulators eye stricter oversight on digital asset flows.

The theft address, 0xDa2e12E94060720581994eEc870F83d9C7200c2c, remains a stark reminder of vulnerabilities in centralized platforms. Industry watchers point to Lazarus's evolving tactics, blending state-sponsored hacks with sophisticated laundering schemes that have evaded detection in recent months. As blockchain forensics advance, such delays from providers like Circle could erode trust in USD-pegged stablecoins amid ongoing crypto security debates.