Wushuo learned that cryptocurrency payment platform Bitrefill disclosed that it suffered a cyberattack on March 1, 2026. The attack is suspected to be related to the North Korean Lazarus/Bluenoroff group, originating from compromised employee devices and leaked credentials. Attackers used these to access certain databases and hot wallets, transferring funds; approximately 18,500 order records were accessed, involving information such as emails and cryptocurrency addresses, with some containing personal names facing potential exposure risks. The company stated that it does not store complete KYC data, business operations have largely recovered, and related losses will be borne by the company itself.