Nostr Web Client

As crazy things are Lazarus has ended up using Wabisabi, it's a pity that the Whirpool coordinator is not there, it would have been a curious choice. If I were Lazarus I would have used Wabisabi since it manages identities at the network level, which whirpool does not and I would have needed thousands of whirpool clients to achieve the same anonymity.

It doesn't matter if you do coinjoin if your attacker knows to which ip those Bitcoins go even if it is a Tor ip, in that case they are correlated again and we know that those Bitcoins belong to a single entity.

Lazarus has all the 3 letter agencies behind them, it's not a trivial decision.

https://blog.wasabiwallet.website/explaining-wasabi-wallets-tor-implementation/index.html

Reply to this note

Please Login to reply.

Discussion

𝕞𝕪𝕡𝕒𝕥𝕙𝕥𝕠𝕗𝕚𝕣𝕖 9mo ago

There is no chance Lazarus is North Korean, they are definitely gov actors/3 letter agencies.

chrizzz 9mo ago

Why not?

𝕞𝕪𝕡𝕒𝕥𝕙𝕥𝕠𝕗𝕚𝕣𝕖 9mo ago

North Korea is a great cover story. They have no need of any money or crypto from the rest of the world. They doing their own thing there.

chrizzz 9mo ago

Is there a website where you can see what North Korea is importing (if anything)?

𝕞𝕪𝕡𝕒𝕥𝕙𝕥𝕠𝕗𝕚𝕣𝕖 9mo ago

No, but frens who have visited shared photos and antedotes and they are pretty self reliant.

Cyph3rp9nk 9mo ago

I also hope Kruw's opsec is good...but the coordinator is after a cloudfare ip...the kruw.io domain registration...and the coordinator is still making money from the remains of the decomposition.....

nostr:nevent1qvzqqqqqqypzpl8hpfzul2qha25p8wd63gm46ufax95lfgnl8h9v84y3zt0k05m7qy88wumn8ghj7mn0wvhxcmmv9uq36amnwvaz7tmwdaehgu3wvf5hgcm0d9hx2u3wwdhkx6tpdshsqgzd50zj5l8aprw5879zhg9xx9szssyxk4mdrggyu2ccca6mcf53wqv93jhh

Rand 9mo ago

"they/them"- historE sh'O'z btr tek manipulation & OR theft - wampum, sil\/ER, g'O'ldE} 'O'\/Er/u/\/dEr - "they/them"

Rand 9mo ago

DISplaCE/REplaCE

lontivero 9mo ago

I'm curious where this claim come from. Do you have any real/verificable source?

I can see that the coordinator with highest number of participants didn't have any significant increase in the number of fresh bitcoin for a long time.

Source: https://liquisabi.com/

Cyph3rp9nk 9mo ago

https://x.com/benbybit/status/1902635986259247207

Cyph3rp9nk 9mo ago

https://www.lazarusbounty.com/en/

Cyph3rp9nk 9mo ago

https://x.com/Ziya_Sadr/status/1904683659686215806

Cyph3rp9nk 9mo ago

This one for example is recent, just today, it is a Lazarus address that has entered a coinjoin round, on Arkham's website you can see their latest moves.

https://intel.arkm.com/explorer/entity/lazarus-group

bc1qjmgp7t34z63qm4l6umzqdcucd8umvmkszd8g4d

https://mempool.space/es/address/bc1qjmgp7t34z63qm4l6umzqdcucd8umvmkszd8g4d

lontivero 9mo ago

Thank you very much. So, supposedly the hacker uses a wallet that reuse addresses and then sends 0.2btc to a round.... It is so hard to believe.

Cyph3rp9nk 9mo ago

That seemed very strange to me, is it possible that they are using the api directly?

lontivero 9mo ago

It can be, idk. There are three clients and none of them have that wierd behavior.