Hackers, fraudsters, and others laundered at least $540 million through the cryptocurrency bridge network RenBridge since 2020, according to blockchain analysis group Elliptic. Elliptic researchers published the report today, citing RenBridge as an example of the risks of decentralized cross-chain networks.
RenBridge is pitched as a way to easily convert virtual currencies like ZCash and Bitcoin to the Ethereum network and then to other blockchains. But “as well as a legitimate tool, cross-chain bridges have also emerged as a key facilitator of money laundering,” letting users avoid regulations and move money easily across networks, the report says. That includes the proceeds of ransomware operations and theft from other chains.
Cryptocurrency isn’t as untraceable as some users expect, but it’s still possible to mask the sources of funds with specific services, especially decentralized ones like Elliptic. And regulators have started to take notice. Earlier this week, the US Department of the Treasury sanctioned Tornado Cash, a decentralized mixer designed to obscure the sources of crypto. It made a similar move with the mixer Blender.io in May. In both of those cases, the government noted the services’ alleged use by North Korean hacker groups.
Elliptic’s report similarly suggests RenBridge was used to launder money stolen from Japan’s Liquid crypto network, a hack linked with North Korea. It also claims RenBridge is popular among Russia-linked ransomware operations, saying $153 million in ransomware was laundered through the service.
Many other digital services can be used for both crime and noncriminal purposes, like privacy and censorship evasion. But decentralized finance or DeFi is particularly rife with theft and hacking, and identifying chokepoints is potentially useful for security analysts and governments alike.