Bybit’s Lazarus Security Lab Reveals Hidden Fund-Freezing Functions Across 16 Major Blockchains
Dubai, UAE, November 12th, 2025, Chainwire
A new report by Bybit’s Lazarus Security Lab has revealed that 16 major blockchains include code that allows them to freeze or restrict user funds.
The report, titled “Blockchain Freezing Exposed: Examine The Impact of Fund Freezing Ability in Blockchain,” is the first large-scale analysis of how blockchains can intervene in user transactions to contain security incidents such as hacks and exploits.
The report examined 166 blockchain networks using an AI-driven analysis combined with manual review. Researchers found that while 16 chains currently have freezing functions, another 19 could introduce them with relatively minor protocol changes.
The report identifies three distinct types of fund-freezing mechanisms:
- Hardcoded freezing, built directly into the blockchain code (e.g., BNB Chain, VeChain)
- Configuration-based freezing, managed through validator or foundation settings (e.g., Sui, Aptos)
- On-chain contract freezing, executed via system contracts (e.g., HECO)
The study highlights several notable cases:
- Sui froze $162 million in stolen assets after the Cetus hack.
- Aptos later added blacklisting functions following the incident.
- BNB Chain used hardcoded blacklists to contain a $570 million bridge exploit.
- VeChain set an early precedent in 2019 by freezing funds from a $6.6 million breach.
- Cosmos’s modular account design may enable similar interventions in the future.
These interventions demonstrate how fund-freezing functions can serve as emergency tools to protect users and mitigate damage in large-scale security breaches.
“Blockchain was built on the principle of decentralization — yet our research shows that many networks are developing pragmatic safety mechanisms to respond quickly to threats,” said David Zong, Head of Group Risk Control and Security at Bybit. “At Bybit, we believe transparency builds trust. Our goal is to encourage open dialogue and better governance across the industry. ”
To conduct the review, Bybit’s Lazarus Security Lab built an AI-assisted detection framework to scan codebases for modules enabling blacklisting, transaction filtering, or dynamic configuration updates. Human researchers then validated each case to ensure accuracy.
The study concludes that transparency around emergency intervention mechanisms should become a core pillar of blockchain governance, urging projects to publicly disclose whether and how they can intervene in on-chain activity.
“As crypto matures, clear and transparent safety mechanisms will help build lasting trust among users and institutions,” the study concludes.
The full research, “Blockchain Freezing Exposed: Examining the Impact of Fund Freezing Ability in Blockchain,” is available here.
#Bybit / #CryptoArk
About Bybit
Bybit is the world’s second-largest cryptocurrency exchange by trading volume, serving a global community of over 70 million users. Founded in 2018, Bybit is redefining openness in the decentralized world by creating a simpler, open, and equal ecosystem for everyone. With a strong focus on Web3, Bybit partners strategically with leading blockchain protocols to provide robust infrastructure and drive on-chain innovation. Renowned for its secure custody, diverse marketplaces, intuitive user experience, and advanced blockchain tools, Bybit bridges the gap between TradFi and DeFi, empowering builders, creators, and enthusiasts to unlock the full potential of Web3. Discover the future of decentralized finance at Bybit.com.
For more details about Bybit, please visit Bybit Press
For media inquiries, please contact: media@bybit.com
For updates, please follow: Bybit’s Communities and Social Media