The solution to crypto’s Lazarus problem could be simpler than expected
In just over 18 months, North Korean hackers, including the infamous Lazarus group, have used the same “hijacked multisig” technique to steal over $1.75 billion worth of crypto, a figure dwarfing all other losses in the sector over the same period. There may be a solution, however, and it’s simpler than one might think. A thread posted to X by veteran security researcher Daniel Von Fange, until recently of Origin Protocol, suggests adding a step to the typical multisig workflow. The change would insert a surprisingly simple sanity check on any approved action, to be ratified between signing and execution. North Korea hijacking multisigs is now the biggest loss category in crypto hacks. After talking with teams and building three prototypes, I think I know the next security layer in fixing this, and it requires less from signers, not more. 1/14 pic.twitter.com/0MrfseOXvp — Daniel Von Fange (@danielvf) August 19, 2025 Read more: Radiant Capital’s ...