According to The Block, the US government discovered that the malicious team behind the massive breach is Lazarus, a North Korean group. Axie Infinity lost a whopping $540 million in the March exploit.
How a fake LinkedIn job offer destroyed Axie Infinity
Citing two sources with direct knowledge of the matter, The Block said that employees at Sky Mavis, Axie Infinity’s developer, were approached by hackers masquerading as job recruiters on LinkedIn. At least one employee, a senior engineer, took the bait and attended multiple interviews. As you might have guessed, the engineer passed the “interviews” with flying colors and received a “job offer” in the form of a PDF. Unfortunately, they downloaded the malicious file, and as a result, the hackers were able to infiltrate Ronin, the Ethereum-based sidechain that underpins Axie Infinity. “This employee no longer works at Sky Mavis,” A Ronin blog post said about the March attack. “The attacker managed to leverage that access to penetrate Sky Mavis IT infrastructure and gain access to the validator nodes.” Axie Infinity, influenced by Pokémon, was once all the rage. Personally, I wasn’t a big fan of it because the buy-in costs were too high. In order to start playing, gamers needed at least three Axies (unique creatures with varying skillsets and quirks) to battle against other opponents. In the summer of 2021, Axies ranged between $230 and $312,000. The game was so popular, a YouTube documentary highlighted that some low-income workers in the Philippines relied on Axie Infinity for their livelihood. How? Well, the game doled out rewards in the form of a cryptocurrency called Smooth Love Potion (SLP). Between the crypto bear market, the March exploit, and according to Decrypt, a poor economic strategy, Axie Infinity was bound to die off eventually — even without the fake LinkedIn recruiters.