<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	xmlns:media="http://search.yahoo.com/mrss/"
>

<channel>
	<title>North Korea - Coinfea</title>
	<atom:link href="https://coinfea.com/tag/north-korea/feed/" rel="self" type="application/rss+xml" />
	<link>https://coinfea.com</link>
	<description>Crypto and Blockchain News</description>
	<lastBuildDate>Wed, 11 Feb 2026 13:58:51 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	

<image>
	<url>https://coinfea.com/wp-content/uploads/2022/04/cropped-Cfeawhite-1-32x32.png</url>
	<title>North Korea - Coinfea</title>
	<link>https://coinfea.com</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>North Korean hackers deploy deepfake calls to hack crypto firms</title>
		<link>https://coinfea.com/north-korean-hackers-deploy-deepfake-calls-to-hack-crypto-firms/</link>
		
		<dc:creator><![CDATA[Owotunse Adebayo]]></dc:creator>
		<pubDate>Wed, 11 Feb 2026 14:30:00 +0000</pubDate>
				<category><![CDATA[General News]]></category>
		<category><![CDATA[Hackers]]></category>
		<category><![CDATA[North Korea]]></category>
		<guid isPermaLink="false">https://coinfea.com/?p=19785</guid>

					<description><![CDATA[<p>North Korean hackers are now targeting crypto firms with several malware deployed alongside multiple scams, including fake Zoom meetings. The North Korean threat actor known as UNC1069 has been observed targeting the crypto sector to steal sensitive data from Windows and macOS systems with the ultimate goal of facilitating financial theft. UNC1069 was assessed to [&#8230;]</p>
<p>The post <a href="https://coinfea.com/north-korean-hackers-deploy-deepfake-calls-to-hack-crypto-firms/">North Korean hackers deploy deepfake calls to hack crypto firms</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></description>
										<content:encoded><![CDATA[<p><strong>North Korean hackers are now targeting crypto firms with several malware deployed alongside multiple scams, including fake Zoom meetings.</strong></p>



<p>The North Korean threat actor known as UNC1069 has been observed <a href="https://www.cryptopolitan.com/north-korea-hackers-deepfake-hack-firms/">targeting</a> the crypto sector to steal sensitive data from Windows and macOS systems with the ultimate goal of facilitating financial theft. UNC1069 was assessed to be active from April 2018. It has a history of running social engineering campaigns for financial gain using fake meeting invites and posing as investors from reputable companies.</p>



<h2 class="wp-block-heading">North Korean hackers target firms with deepfake Zoom calls</h2>



<p>In its latest report, Google Mandiant researchers detailed their investigation into an intrusion targeting a FinTech company in the crypto industry. According to investigators, the intrusion began with a compromised <a href="https://coinfea.com/toncoin-chain-thrives-despite-telegram-crackdown/" title="Toncoin Chain Thrives Despite Telegram Crackdown">Telegram</a> account belonging to a crypto industry executive. The attackers used the hijacked profile to contact the victim.</p>



<p>They gradually built trust before sending a Calendly invitation for a video meeting. The meeting link directed the target to a fake Zoom domain hosted on infrastructure under the threat actors’ control. During the call, the victim reported seeing what appeared to be a deepfake video of a CEO from another crypto company.</p>



<p>“While Mandiant was unable to recover forensic evidence to independently verify the use of AI models in this specific instance, the reported ruse is similar to a previously publicly reported incident with similar characteristics, where deepfakes were also allegedly used,” the report stated.</p>



<h2 class="wp-block-heading">AI-link scams are on the rise</h2>



<p>The attackers created the impression of audio problems in the meeting to justify the next step. They instructed the victim to run troubleshooting commands on their device. Those commands, tailored for both macOS and Windows systems, secretly initiated the infection chain. As a result, several malware components were activated. Mandiant identified seven distinct types of malware used during the attack.</p>



<p>The tools were designed to access keychain and steal passwords, retrieve browser cookies and login information, access Telegram session information, and obtain other private files. Investigators assessed that the objective was twofold: To enable potential crypto theft and harvest data that could support future social engineering attacks. The investigation revealed an unusually large volume of tooling dropped onto a single host.</p>



<p>The incident is part of a broader pattern. North Korean-linked actors siphoned more than $300 million by posing as trusted industry figures during fraudulent Zoom and Microsoft Teams meetings. The scale of activity throughout the year was even more striking. As reported by Cryptopolitan, North Korean threat groups were responsible for $2.02 billion in stolen digital assets in 2025, a 51% increase from the previous year.</p><p>The post <a href="https://coinfea.com/north-korean-hackers-deploy-deepfake-calls-to-hack-crypto-firms/">North Korean hackers deploy deepfake calls to hack crypto firms</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></content:encoded>
					
		
		
			<media:content url="https://coinfea.com/wp-content/uploads/2026/02/IMG_20260211_143942-1024x619.jpg" medium="image" />
	</item>
		<item>
		<title>North Korea fingered in BTC heist that crippled British platform</title>
		<link>https://coinfea.com/north-korea-fingered-in-btc-heist-that-crippled-british-platform/</link>
		
		<dc:creator><![CDATA[Owotunse Adebayo]]></dc:creator>
		<pubDate>Mon, 18 Aug 2025 14:16:29 +0000</pubDate>
				<category><![CDATA[Bitcoin News]]></category>
		<category><![CDATA[FCA]]></category>
		<category><![CDATA[North Korea]]></category>
		<category><![CDATA[United Kingdom]]></category>
		<guid isPermaLink="false">https://coinfea.com/?p=15746</guid>

					<description><![CDATA[<p>North Korea has been accused of stealing about £17 million in BTC from crypto trading platform Lykke, registered in the United Kingdom. The hack forced the company to pause trading, halt operations, and go through liquidation in court. According to the United Kingdom’s Office of Financial Sanctions Implementation, a division of the Treasury, the hack [&#8230;]</p>
<p>The post <a href="https://coinfea.com/north-korea-fingered-in-btc-heist-that-crippled-british-platform/">North Korea fingered in BTC heist that crippled British platform</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></description>
										<content:encoded><![CDATA[<p><strong>North Korea has been accused of stealing about £17 million in BTC from crypto trading platform Lykke, registered in the United Kingdom. The hack forced the company to pause trading, halt operations, and go through liquidation in court.</strong></p>



<p>According to the United Kingdom’s Office of Financial Sanctions Implementation, a division of the Treasury, the <a href="https://www.cryptopolitan.com/north-korea-accused-in-23m-bitcoin-heist/" title="hack">hack</a> was carried out by “malicious Democratic People’s Republic of Korea cyberactors”, a report from The Telegraph said. The attack hit both Bitcoin and Ethereum networks.</p>



<p>The group believed to be behind the heist is Lazarus, the North Korean hacking group linked to multiple major crypto attacks around the world. If confirmed, this would be their largest crypto theft from any British target to date. The stolen money is suspected to be part of Pyongyang’s broader effort to fund its nuclear weapons program and military projects, with billions already funneled through past crypto raids.</p>



<h2 class="wp-block-heading">United Kingdom agency blames North Korea for BTC theft</h2>



<p>The attackers of the crypto trading platform were identified by Whitestream, an Israeli crypto research company. They tracked the funds and said the hackers cleaned the money through two crypto companies that are widely known for helping users hide their tracks. “They moved the funds using platforms that basically ignore money-laundering rules,” Whitestream said. These mixers and unregulated exchanges made it hard to follow the trail.</p>



<p>However, the claim doesn&#8217;t seem to sit well with everyone, as some researchers agree that there is no solid proof to tie the hack directly to North Korea. They claim it is too early to pinpoint the responsible party. Lykke, the company hit by the hack, was founded in 2015 by Richard Olsen, a descendant of Swiss banking legend Julius Baer. It ran operations out of Zug, Switzerland, but its corporate registration was in the UK.</p>



<p>Lykke promised commission-free trading and attracted a good chunk of retail users, but things spiraled after the attack. The company announced the $22.8 million loss last year, and despite saying it could recover user funds, it froze trading and shut down by December 2023. In March 2025, a UK court ordered Lykke to be liquidated after over 70 users took legal action to recover their funds. These customers said they had lost £5.7 million when the platform stopped operating.</p>



<p>Interpath Advisory was invited to handle the process. Before the hack, the UK’s <a href="https://coinfea.com/binance-halts-uk-registrations-amid-fca-regulatory-storm/" title="Binance halts UK registrations amid FCA regulatory storm">Financial Conduct Authority</a> had already warned about Lykke in 2023, saying the company wasn’t licensed to offer services to British consumers. That red flag wasn’t enough to stop users from investing, and once the heist happened, Lykke’s UK arm couldn’t keep up with claims.</p>



<p>Richard was declared bankrupt in January 2025 and has been under investigation in Switzerland for possible criminal wrongdoing, according to documents from British courts. His company’s fall is now part of a bigger story, one where North Korea keeps grabbing crypto to keep its regime afloat, no matter who gets burned in the process.</p><p>The post <a href="https://coinfea.com/north-korea-fingered-in-btc-heist-that-crippled-british-platform/">North Korea fingered in BTC heist that crippled British platform</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></content:encoded>
					
		
		
			<media:content url="https://coinfea.com/wp-content/uploads/2025/08/IMG_20250818_142129-1024x616.jpg" medium="image" />
	</item>
		<item>
		<title>North Korean hackers lose more than $700,000 trading on Hyperliquid</title>
		<link>https://coinfea.com/north-korean-hackers-lose-more-than-700000-trading-on-hyperliquid/</link>
		
		<dc:creator><![CDATA[Owotunse Adebayo]]></dc:creator>
		<pubDate>Mon, 23 Dec 2024 15:15:07 +0000</pubDate>
				<category><![CDATA[General News]]></category>
		<category><![CDATA[Hyperliquid]]></category>
		<category><![CDATA[North Korea]]></category>
		<guid isPermaLink="false">https://coinfea.com/?p=11504</guid>

					<description><![CDATA[<p>North Korean hackers have lost more than $700,000 trading on the exchange Hyperliquid. According to sources, the flagged addresses linked to the hackers have been carrying out trading activities on the exchange, with most leading to losses. The losses have raised red flags, with most experts thinking that the hackers are positioning themselves to breach [&#8230;]</p>
<p>The post <a href="https://coinfea.com/north-korean-hackers-lose-more-than-700000-trading-on-hyperliquid/">North Korean hackers lose more than $700,000 trading on Hyperliquid</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></description>
										<content:encoded><![CDATA[<p><strong>North Korean hackers have lost more than $700,000 trading on the exchange Hyperliquid. According to sources, the flagged addresses linked to the hackers have been carrying out trading activities on the exchange, with most leading to losses. The losses have raised red flags, with most experts thinking that the hackers are positioning themselves to breach the platform.</strong></p>



<p>According to a Chinese correspondent Colin Wu, a user on microblogging platform X, alerted the Hyperliquid team to the development, highlighting a potential attack. The user added that the Democratic People&#8217;s Republic of Korea (DPRK) does not trade, it tests. Hyperliquid’s HYPE token has been making waves in the industry, recently smashing the $11 billion trading volume mark thanks to its recent airdrop. Experts hope the token will reach above $35.02, but the recent development has worried everyone.</p>



<h2 class="wp-block-heading">Experts offer help to Hyperliquid as DPRK hacks dominate in 2024</h2>



<p>About two weeks ago, crypto KOL Tayvano offered to help Hyperliquid counter any potential threats from the acts. In a letter, he highlighted the likely dangers that the North Korean hackers&#8217; familiarity with the platform poses. “I would like to walk you through some of the measures that your team can and should take to mitigate the risk of a sophisticated attack,” Tayvano said.</p>



<figure class="wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter"><div class="wp-block-embed__wrapper">
<blockquote class="twitter-tweet" data-width="550" data-dnt="true"><p lang="en" dir="ltr">DPRK&#39;s trading career is&#8230;uh&#8230;.going&#8230;..<img src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f648.png" alt="🙈" class="wp-smiley" style="height: 1em; max-height: 1em;" /><br><br>tbh if i was the dude managing Hyperliquid&#39;s 4 validators (or those fucking ghetto ass binaries on gh) I would be shitting my pants right now.<br><br>Hyperliquid dudes dont seem worried at all though so im sure its fine. <img src="https://s.w.org/images/core/emoji/16.0.1/72x72/1fae0.png" alt="🫠" class="wp-smiley" style="height: 1em; max-height: 1em;" /> <a href="https://t.co/JrrU7t1sJe">pic.twitter.com/JrrU7t1sJe</a></p>&mdash; Tay <img src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f496.png" alt="💖" class="wp-smiley" style="height: 1em; max-height: 1em;" /> (@tayvano_) <a href="https://twitter.com/tayvano_/status/1870960207842701358?ref_src=twsrc%5Etfw">December 22, 2024</a></blockquote><script async src="https://platform.twitter.com/widgets.js" charset="utf-8"></script>
</div></figure>



<p>The letter described the qualities of hackers from DPRK, noting that they were unrelenting, persistent, and sophisticated. The group also has access to zero-day vulnerabilities, one that Chrome fixed some time ago. Tayvano said Hyperliquid should open a line of communication with experts, hoping that it would help both parties share measures and updates to help counter any potential threats aimed at the platform.</p>



<p>Meanwhile, a recent Chainalysis report highlighted that hackers from North Korea were responsible for about half of the entire theft in the crypto industry this year. According to the report, the hackers stole about $1.34 billion, intensifying their efforts than the previous years and attacking a wide range of platforms. Hacks netted DPRK $50 to $100 million in profits, more than the figure they saw in 2023. Chainalysis said it was due to the hackers growing expertise in carrying out massive attacks.</p>



<h2 class="wp-block-heading">Countries set to join hands to mete out sanctions</h2>



<p>North Korean hackers&#8217; <a href="https://www.cryptopolitan.com/north-korean-hackers-lose-700k-hyperliquid/" title="intensified">intensified</a> attacks have caused countries to form a coalition to tackle the growing menace. A recent team-up between the United States and the United Arab Emirates led to the disruption of a money laundering syndicate for the DPRK. A statement from the Treasury’s Office of Foreign Assets Control (OFAC) noted that two Chinese nationals and a UAE-based company were sanctioned for laundering money for North Korea.</p>



<p>The sanctions by OFAC led to the arrest of the individuals, freezing the firm in the process. This means that both the firm and the individuals have been barred from using global financial systems. The agency has also issued warnings to entities planning to work with them, noting that they risk sanctions and other penalties. The sanctions are also part of a wider crackdown on North Korea’s missile program funding since most of the resources are from proceeds from <a href="https://coinfea.com/drakes-x-account-hacked-to-promote-solana-meme-coin/" title="Drake’s X account hacked to promote Solana meme coin">hacks</a> and money laundering.</p><p>The post <a href="https://coinfea.com/north-korean-hackers-lose-more-than-700000-trading-on-hyperliquid/">North Korean hackers lose more than $700,000 trading on Hyperliquid</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></content:encoded>
					
		
		
			<media:content url="https://coinfea.com/wp-content/uploads/2024/12/North-Korean-hackers-have-lost-more-than-700000-in-trading-on-Hyperliquid.-Are-they-preparing-to-hack-the-platform-1024x576.webp" medium="image" />
	</item>
		<item>
		<title>North Korean hackers are collaborating with Russian exchanges for crypto money laundering</title>
		<link>https://coinfea.com/north-korean-hackers-are-collaborating-with-russian-exchanges-for-crypto-money-laundering/</link>
		
		<dc:creator><![CDATA[Damilola Lawrence]]></dc:creator>
		<pubDate>Wed, 20 Sep 2023 18:58:14 +0000</pubDate>
				<category><![CDATA[Cryptocurrency News]]></category>
		<category><![CDATA[Chainalysis]]></category>
		<category><![CDATA[North Korea]]></category>
		<guid isPermaLink="false">https://coinfea.com/?p=6151</guid>

					<description><![CDATA[<p>Chainalysis, the on-chain analytics firm, disclosed that North Korean hacking groups have escalated their use of Russian cryptocurrency exchanges for laundering stolen assets. This development comes amid growing concerns over North Korea&#8217;s advanced cyber warfare tactics and its efforts to fund its nuclear programs. The data indicates that $21.9 million in cryptocurrency, stolen from Harmony [&#8230;]</p>
<p>The post <a href="https://coinfea.com/north-korean-hackers-are-collaborating-with-russian-exchanges-for-crypto-money-laundering/">North Korean hackers are collaborating with Russian exchanges for crypto money laundering</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></description>
										<content:encoded><![CDATA[<p>Chainalysis, the on-chain analytics firm, disclosed that North Korean hacking groups have escalated their use of Russian cryptocurrency exchanges for laundering stolen assets. This development comes amid growing concerns over North Korea&#8217;s advanced cyber warfare tactics and its efforts to fund its nuclear programs. The data indicates that $21.9 million in cryptocurrency, stolen from Harmony Protocol, was recently funneled through a Russian exchange notorious for illicit transactions. This marks a significant uptick in the collaboration between the cybercriminal elements of North Korea and Russia.</p>



<p>While North Korean hacking activities appear to have declined in 2023, Chainalysis <a href="https://www.chainalysis.com/blog/north-korea-russia-crypto-money-laundering/" title="">warns</a> against interpreting this as a sign of reduced criminal intent. The firm&#8217;s data shows that North Korean hackers have stolen around $340.4 million in cryptocurrency this year, a figure dwarfed by the over $1.7 billion reported in 2022.</p>



<p> However, the astronomical figures from last year set an unusually high benchmark. North Korea-linked groups still account for nearly 30% of all cryptocurrency stolen through hacks this year, maintaining their position as one of the largest active threats in the cybercrime landscape.</p>



<p>The partnership between North Korean and Russian cybercriminals poses a formidable challenge for international law enforcement agencies. Russia&#8217;s well-documented uncooperative stance toward international efforts significantly reduces the likelihood of recovering stolen assets. This comes as independent sanctions monitors and the United Nations have raised alarms about North Korea&#8217;s evolving cyber tactics, including state-sponsored hacking groups targeting cryptocurrency and financial exchanges globally.</p>



<p>The cross-border nature of cryptocurrencies offers both challenges and opportunities for law enforcement. While it facilitates collaboration among rogue nations, the transparent nature of blockchain technology provides investigative advantages. </p>



<p>The recent findings by Chainalysis serve as a stark reminder of the evolving complexities of cybercrime. As North Korean hackers adapt their strategies and form alliances with like-minded entities in Russia, the stakes in combating crypto-related crimes continue to rise. International efforts must intensify to counter these growing threats and maintain global financial systems&#8217; integrity.</p><p>The post <a href="https://coinfea.com/north-korean-hackers-are-collaborating-with-russian-exchanges-for-crypto-money-laundering/">North Korean hackers are collaborating with Russian exchanges for crypto money laundering</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></content:encoded>
					
		
		
			<media:content url="https://coinfea.com/wp-content/uploads/2023/08/JasperArt_2023-08-21_22.26.43_upscaled.jpg" medium="image" />
	</item>
		<item>
		<title>Russia-DPRK alliance in crypto crime puts the world on high alert</title>
		<link>https://coinfea.com/russia-dprk-alliance-in-crypto-crime-puts-the-world-on-high-alert/</link>
		
		<dc:creator><![CDATA[Mutuma Maxwell]]></dc:creator>
		<pubDate>Sat, 16 Sep 2023 20:05:26 +0000</pubDate>
				<category><![CDATA[Cryptocurrency News]]></category>
		<category><![CDATA[Hack]]></category>
		<category><![CDATA[North Korea]]></category>
		<category><![CDATA[Russia]]></category>
		<guid isPermaLink="false">https://coinfea.com/?p=6112</guid>

					<description><![CDATA[<p>In the wake of a new report by blockchain analytics firm Chainalysis, concerns are growing about the international implications of cybercrime and its direct link to North Korea&#8217;s missile program. The report reveals that the Democratic People&#8217;s Republic of Korea (DPRK) has already surpassed $340 million in cryptocurrency theft this year, with most funds channeled [&#8230;]</p>
<p>The post <a href="https://coinfea.com/russia-dprk-alliance-in-crypto-crime-puts-the-world-on-high-alert/">Russia-DPRK alliance in crypto crime puts the world on high alert</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></description>
										<content:encoded><![CDATA[<p>In the wake of a new report by blockchain analytics firm Chainalysis, concerns are growing about the international implications of cybercrime and its direct link to North Korea&#8217;s missile program. The report reveals that the Democratic People&#8217;s Republic of Korea (DPRK) has already surpassed $340 million in cryptocurrency theft this year, with most funds channeled through Russian exchanges known for their involvement in money laundering.</p>



<p>This disclosure coincides with recent diplomatic discussions between Russia and North Korea, further intensifying global apprehensions. While the stolen amount is lower than the 2017 peak of $1.65 billion, North Korea accounts for over one-third of all cryptocurrency thefts this year. Experts warn that a significant heist could easily propel the annual tally past the $1 billion threshold.</p>



<p>The Chainalysis report highlights the troubling connections between DPRK cybercriminals and Russian financial platforms, notably featuring a $22 million transfer from the Harmony Protocol to a questionable Russian exchange. The connection amplifies fears over North Korea&#8217;s burgeoning cyber alliances, particularly with Russia, as they both appear to deepen their collaboration in digital crimes.</p>



<p>Governments are struggling under the weight of these cyber-attacks, and companies and retail investors are also bearing the brunt. The month has seen seven major cryptocurrency heists, including a $52 million scam targeting the CoinEx platform and compromises to Stake Wallet, FloorDAO, and Coindroplet.</p>



<p>As the probability of asset recovery from unresponsive Russian exchanges is dismal, these revelations underscore the urgent necessity for a globally coordinated regulatory framework for cryptocurrencies. Amidst growing geopolitical tensions, North Korea’s cyber ventures are not just criminal but also threaten international stability.</p>



<p>By making cybercrime a lucrative enterprise—funds from which possibly fuel its ballistic missile initiatives—North Korea is turning the global cryptocurrency market into an unwitting accomplice. This alarming development warrants immediate action from global governance structures, regulatory authorities, and law enforcement agencies.</p>



<p>The escalation in cybercrimes, backed by an increasingly intricate network of criminals in North Korea and Russia, spells out a pressing issue that cannot be ignored. A multi-billion-dollar problem is ballooning in the digital underworld, demanding unified global countermeasures to stave off greater catastrophe.</p><p>The post <a href="https://coinfea.com/russia-dprk-alliance-in-crypto-crime-puts-the-world-on-high-alert/">Russia-DPRK alliance in crypto crime puts the world on high alert</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></content:encoded>
					
		
		
			<media:content url="https://coinfea.com/wp-content/uploads/2023/09/JasperArt_2023-09-16_23.00.42_upscaled.jpg" medium="image" />
	</item>
		<item>
		<title>Cybercriminals from North Korea amass over $200 Million in 2023 crypto thefts: TRM Labs analysis</title>
		<link>https://coinfea.com/cybercriminals-from-north-korea-amass-over-200-million-in-2023-crypto-thefts-trm-labs-analysis/</link>
		
		<dc:creator><![CDATA[Damilola Lawrence]]></dc:creator>
		<pubDate>Sun, 20 Aug 2023 16:48:19 +0000</pubDate>
				<category><![CDATA[Cryptocurrency News]]></category>
		<category><![CDATA[cybercrime]]></category>
		<category><![CDATA[North Korea]]></category>
		<guid isPermaLink="false">https://coinfea.com/?p=5775</guid>

					<description><![CDATA[<p>Hackers with connections to North Korea have pilfered over $200 million in digital currencies during 2023, making up 20% of the total crypto thefts this year, as revealed by an analysis conducted by blockchain research company TRM Labs. This thievery is a fraction of the more than $2 billion plundered by online criminals over the [&#8230;]</p>
<p>The post <a href="https://coinfea.com/cybercriminals-from-north-korea-amass-over-200-million-in-2023-crypto-thefts-trm-labs-analysis/">Cybercriminals from North Korea amass over $200 Million in 2023 crypto thefts: TRM Labs analysis</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></description>
										<content:encoded><![CDATA[<p>Hackers with connections to North Korea have pilfered over $200 million in digital currencies during 2023, making up 20% of the total crypto thefts this year, as revealed by an analysis conducted by blockchain research company TRM Labs. </p>



<p>This thievery is a fraction of the more than $2 billion plundered by online criminals over the past five years, involving 30 separate assaults on various crypto initiatives. A significant portion of these malicious activities has been directed at decentralized finance (DeFi) platforms, specifically aiming at cross-chain bridges.</p>



<p>The previous year marked a high point for these cyber thieves, with digital currencies worth more than $800 million being stolen. Among the major incidents were three attacks on DeFi platforms, one of which resulted in a $625 million loss from the Ronin Bridge in March. Techniques such as chain hopping and using mixers have been employed by North Korean hackers to launder the ill-gotten gains, followed by rapid conversion into cash via exchanges with lax KYC/AML requirements.</p>



<p>In a notable event in June, the criminals targeted Atomic Wallet users, successfully stealing an estimated $100 million in various digital currencies, including Bitcoin, Ethereum, Tron, XRP, Stellar, Dogecoin, and Litecoin. TRM Labs detailed how the stolen Ethereum was moved to controlled addresses using wrapped Ether (WETH) and then exchanged for wrapped Bitcoin (WBTC), eventually converted to Bitcoin and sent through mixing services to obscure the origin.</p>



<h2 class="wp-block-heading">Evolving techniques and the importance of robust cybersecurity</h2>



<p>The<a href="https://www.trmlabs.com/post/inside-north-koreas-crypto-heists" title=""> report </a>from TRM Labs also highlights how North Korean hackers have refined their laundering methods on-chain, transitioning from straightforward cryptocurrency exchange usage to intricate, multi-tiered money laundering schemes. This adaptation has come in the face of intensified OFAC sanctions, heightened law enforcement scrutiny, and enhanced tracking abilities. Chain-hopping, where one form of digital asset is changed into another and shifted across various chains, has been a key method employed by hackers to conceal their activities.</p>



<p>TRM Labs stresses the necessity for strong cybersecurity protocols, including the use of hardware security modules for managing cryptographic keys, the whitelisting of addresses to restrict fund transfers to verified recipients, and the utilization of secure, offline storage for keys and passcodes. The responsibility of individual asset protection within the DeFi ecosystem is also accentuated.</p>



<p>The report&#8217;s findings bring to light the escalating danger of cybercrime in the realm of cryptocurrency, with a particular emphasis on the DeFi arena. The substantial sums stolen, coupled with the sophisticated methods employed by the criminals, underscore the pressing need for more stringent security protocols and regulatory supervision.</p>



<p>The concentration on DeFi platforms and the continual evolution of laundering strategies demonstrate the cybercriminals&#8217; ability to adapt to regulatory constraints and technological progress.</p><p>The post <a href="https://coinfea.com/cybercriminals-from-north-korea-amass-over-200-million-in-2023-crypto-thefts-trm-labs-analysis/">Cybercriminals from North Korea amass over $200 Million in 2023 crypto thefts: TRM Labs analysis</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></content:encoded>
					
		
		
			<media:content url="https://coinfea.com/wp-content/uploads/2023/08/JasperArt_2023-08-20_17.46.57_upscaled.jpg" medium="image" />
	</item>
		<item>
		<title>U.S. Government targets money laundering schemes involving North Korea</title>
		<link>https://coinfea.com/u-s-government-targets-money-laundering-schemes-involving-north-korea/</link>
		
		<dc:creator><![CDATA[Mutuma Maxwell]]></dc:creator>
		<pubDate>Tue, 25 Apr 2023 13:44:45 +0000</pubDate>
				<category><![CDATA[Cryptocurrency News]]></category>
		<category><![CDATA[Money Laundering]]></category>
		<category><![CDATA[North Korea]]></category>
		<category><![CDATA[U.S]]></category>
		<guid isPermaLink="false">https://coinfea.com/?p=4240</guid>

					<description><![CDATA[<p>Monday witnessed the revelation of an indictment against a North Korean banker and U.S. officials&#8217; imposition of sanctions on two cryptocurrency traders. These actions focused on their purported involvement in various money laundering schemes. The Department of Justice (DOJ) disclosed that the North Korean banker had been charged with unlawful activities related to the cryptocurrency [&#8230;]</p>
<p>The post <a href="https://coinfea.com/u-s-government-targets-money-laundering-schemes-involving-north-korea/">U.S. Government targets money laundering schemes involving North Korea</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></description>
										<content:encoded><![CDATA[<p>Monday witnessed the revelation of an indictment against a North Korean banker and U.S. officials&#8217; imposition of sanctions on two cryptocurrency traders. These actions focused on their purported involvement in various money laundering schemes.</p>



<p>The Department of Justice (DOJ) disclosed that the North Korean banker had been charged with unlawful activities related to the cryptocurrency market. The primary reason behind this accusation was that the alleged participated in criminal acts of money laundering.</p>



<p>This highlights the ongoing efforts by authorities to crack down on illicit financial activities and preserve the financial system&#8217;s integrity.</p>



<p>U.S. officials announced that the activities in question were allegedly aimed at generating revenue for Kim Jong-Un&#8217;s regime. Among those indicted is Sim Hyon Sop, a 39-year-old banker representing the Korea Kwangson Banking Corporation, who has been accused of collaborating with several individuals, including a Chinese national and a Hong Kong British National, of exploiting and stealing funds from cryptocurrency exchanges to benefit North Korea.</p>



<p>According to sources familiar with the case, the accused parties allegedly conspired to steal U.S. Dollars to purchase goods for North Korea, bypassing sanctions imposed by the Treasury Department to hinder the country&#8217;s ballistic missile programs.</p>



<p>These allegations showcase the continuing efforts of authorities to prevent illegal financial activities and uphold the sanctity of the financial system.</p>



<p>Additionally, Hyon is <a href="https://www.justice.gov/opa/pr/north-korean-foreign-trade-bank-representative-charged-crypto-laundering-conspiracies">accused </a>of conspiring with North Korean Information Technology (I.T.) team to secretly launder the earnings of U.S. citizens employed by dubious blockchain companies operating in the country.</p>



<p>These workers operated under false identities and cunningly requested reimbursement in cryptocurrencies like Tether (USDT) and USD Coin (USDC), which were funnelled to North Korea.</p>



<p>According to the Department of Justice verdict, Sim faces a possible prison sentence of up to 20 years for his alleged involvement in money laundering schemes. Meanwhile, Wu could face up to 5 years in prison for operating an unlicensed money-transmitting business.</p>



<p>The charges against Hyon and Wu illustrate the ongoing efforts of authorities to combat illicit financial activities and maintain the financial system&#8217;s integrity.</p><p>The post <a href="https://coinfea.com/u-s-government-targets-money-laundering-schemes-involving-north-korea/">U.S. Government targets money laundering schemes involving North Korea</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></content:encoded>
					
		
		
			<media:content url="https://coinfea.com/wp-content/uploads/2022/02/Untitled-design-7.png" medium="image" />
	</item>
	</channel>
</rss>
