BitMEX, a cryptocurrency exchange, has uncovered critical vulnerabilities in the operational security of the Lazarus Group, a North Korean cybercrime network known for its sophisticated hacking activities. The discovery came during an internal counter-operations investigation that revealed details about the group’s methods and infrastructure. The researchers discovered IP addresses, database logs, and tracking algorithms used by the group. Notably, one hacker likely exposed their true location by failing to consistently utilize a VPN, revealing their physical address in Jiaxing, China. Furthermore, BitMEX gained access to an instance of Supabase, a platform for deploying databases commonly used by the group.