PANews reported on June 3 that BitMEX recently disclosed that its security team successfully uncovered an attack led by the North Korean-backed Lazarus Group. Hackers attempted to lure employees to access GitHub projects containing malicious code on the grounds of "Web3 NFT platform collaboration." The investigation found that the malicious program recorded the victim's device information through the Supabase database, and accidentally leaked the attacker's real IP due to incorrect permission configuration. One of the IPs came from the China Mobile network in Jiaxing, China, exposing his "Victor" identity operation error. The team also tracked the attacker's daily routine and VPN usage information, and disclosed multiple IoC indicators for community reference.