Bitcoin
$62,006.01+0.90%
Ethereum
$3,006.86+0.41%
Binance Coin
$540.88+0.61%
Solana
$135.06+1.85%
XRP
$0.48859393-1.22%
Toncoin
$6.48+6.19%
Dogecoin
$0.14673106-0.53%
Cardano
$0.44497248-0.40%
Shiba Inu
$0.00002200-0.74%
Avalanche
$33.65-0.75%
Tron
$0.10851086-1.14%
Wrapped Bitcoin
$61,137.82+1.45%
PlayIconNav
Crypto Prices CoinDesk 20 Index CoinDesk 20 Index
Consensus 2024Price Increase Extension Ends In
01
DAY
18
HR
06
MIN
40
SEC
Finance

Sanctioned Mixer Blender Re-Launched as Sinbad, Elliptic Says

Operators of Blender.io might have launched Sinbad after Blender was sanctioned for processing North Korean hackers’ money, blockchain intel firm said.

By Anna Baydakova
AccessTimeIconFeb 13, 2023 at 6:36 p.m. UTC
Updated May 9, 2023 at 4:08 a.m. UTC
(Getty Images)
(Getty Images)
10 Years of Decentralizing the Future
May 29-31, 2024 - Austin, TexasThe biggest and most established global hub for everything crypto, blockchain and Web3.Register Now

Blockchain analytics company Elliptic said in a blog post on Monday that an anonymizing service for crypto transactions that was shut down last year has likely re-launched under a new name.

Wallets of Blender.io on the Bitcoin and Ethereum blockchains were put on a U.S. sanctions list in May 2022 after it turned out North Korean hacker group Lazarus used the service to launder cybercrime proceeds. The U.S. Treasury Department said Lazarus was behind the infamous Ronin hack, when $625 million worth of crypto was stolen from a blockchain bridge protocol used by the popular non-fungible token NFT game Axie Infinity.

VolumeMuteUnmute

Bitcoin Outlook After Token Rises Roughly 10% in November

  • CyberKongz Moves to Sky Mavis' Ronin Blockchain for Genkai Collection
    28:27
    CyberKongz Moves to Sky Mavis' Ronin Blockchain for Genkai Collection
  • Axie Infinity’s Ronin Blockchain Overhauls Tech, Expands to New Game Studios a Year After $625M Hack
    04:50
    Axie Infinity’s Ronin Blockchain Overhauls Tech, Expands to New Game Studios a Year After $625M Hack
  • Some Pro-Russian Groups Using Crypto to Fund Paramilitary Operations: TRM Labs
    01:39
    Some Pro-Russian Groups Using Crypto to Fund Paramilitary Operations: TRM Labs
  • Binance’s Bid to Buy Voyager’s Assets Complicated by National Security Concern: Sources
    01:28
    Binance’s Bid to Buy Voyager’s Assets Complicated by National Security Concern: Sources

    • The hackers then used cross-chain bridges and mixers to launder the proceeds of the hack, and Blender.io was among them. The mixer ceased operations in April, but Elliptic said a similar service was launched in October, which received crypto from Blender.io-linked wallets and also was used by Lazarus.

    Previously, Lazarus used Blender.io and Tornado Cash, another sanctioned mixer whose developer Andrey Pertsev is now under arrest in Netherlands. Unlike Blender.io, Tornado Cash is still working, despite its addresses being on the Office of Foreign Control (OFAC) sanctions list, Elliptic said. But Blender shut down and Sinbad seems to have taken its place, the blog reads.

    Read also: Crypto Think Tank Coin Center Sues US Treasury Over Tornado Cash Sanctions

    The North Korean hackers used Tornado Cash and Sinbad to launder the crypto they stole from Horizon, another blockchain bridge allowing users to trade assets between the Harmony blockchain and other chains. $100 million worth of crypto was stolen from Horizon in June, and part of it went to Sinbad, Elliptic said.

    There are signs the same people might be behind Sinbad and Blender.io, Elliptic said. For example, before Sinbad was launched officially, its wallet received bitcoin from a wallet “believed to be controlled by the operator of Blender.” The founders might have been testing the new service, Elliptic suggested.

    After Sinbad was launched, most of the incoming transactions would come from a wallet linked to Blender.io, and Sinbad operators rewarded promoters of the new mixer also from a wallet related to Blender. The two mixers had similar patterns of work, Elliptic said, and both have Russian-speaking websites and tech support teams, meaning both might have roots in Russia or Russian-speaking countries.

    Disclosure

    Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

    CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. The Bullish group is majority-owned by Block.one; both companies have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk employees, including journalists, may receive options in the Bullish group as part of their compensation.

    Anna Baydakova
    Anna Baydakova

    Anna Baydakova was CoinDesk's investigative reporter with a special focus on Eastern Europe and Russia. Anna owns BTC and an NFT.

    Follow @baidakova on Twitter

    Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.