The Bybit heist, executed by the Lazarus Group, has been described as the World's biggest ever robbery, amounting to around $1.5Bn. The Axie Infinity Hack (March 2022), also by the Lazarus Group, was said to be in the region of $600M.

As well as both being pulled off by Lazarus, they also share similarities in their MO. Both robberies, for example, exploited weaknesses in the organisational architecture built up around the smart contracts in use by the victims.

In this talk, I'll give an overview of how these two massive hacks went down and I'll zoom in on the Smart Contracts at the centre of each. I've created my own Smart Contracts and will demonstrate exactly how badly written, or badly protected, smart contracts can be an organisation's biggest weakness.