The crypto e-commerce platform Bitrefill confirmed that it was the target of a cyberattack on March 1, resulting in the theft of funds and limited exposure of customer data. The incident report reveals that the breach originated from an employee’s computer, allowing attackers to extract old credentials and escalate access to hot wallets and gift card inventories. Technical indicators and transaction patterns point to the North Korea-linked Lazarus Group as the likely perpetrator.
This incident matters to the market because it highlights the persistent threat of state-sponsored groups in the digital asset sector, which stole over $2 billion in 2025. Bitrefill reported that approximately 18,500 records were compromised, including emails and IP addresses, although the company has already stabilized its operations and absorbed the losses with its own capital. The attack demonstrates that even platforms with minimal personal data storage remain high-value targets due to their liquidity in crypto assets.
In summary, Bitrefill’s services returned to normal after strengthening security measures and collaborating with cybersecurity firms. The company continues to notify affected users while monitoring for potential anomalies in its global systems.
Source:https://x.com/bitrefill/status/2033931580352221656
Disclaimer: Crypto Economy Flash News is prepared from official and verified public sources by our editorial team. Its purpose is to provide quick information on relevant facts within the crypto and blockchain ecosystem. This information does not constitute financial advice or investment recommendations. We recommend always verifying the official channels of each project before making related decisions.
