North Korean Hackers Have Stolen $200 Million So Far This Year: Report

Though the yr isn’t but over, hackers linked to North Korea have made off with over $200 million in cryptocurrency in 2023—accounting for over 20% of all stolen crypto in 2023, in response to a report launched on Friday by blockchain intelligence agency TRM Labs. The haul is a part of greater than $2 billion stolen by cybercriminals within the final 5 years.

Though it’s shaping as much as be one other profitable yr for cybercriminals, TRM Labs mentioned final yr was essentially the most profitable yr for hackers to this point, with over $800 million in cryptocurrency stolen. This was achieved by focusing on DeFi protocols in three main assaults that focused cross-chain bridges, together with $625 million stolen from the Ronin Bridge in March of that yr.

“North Korean hackers use myriad strategies to launder stolen funds—from chain hopping to mixers—after which rapidly money out by way of accounts at exchanges that sometimes have decrease KYC/AML controls in place,” a TRM Labs spokesperson informed Decrypt in an e-mail. “Following OFAC’s sanctioning of cryptocurrency mixing service Twister Money final yr, TRM Labs has seen North Korea strongly favor Sinbad as the blending service of selection.”

Hackers focused Atomic Pockets customers in June, stealing roughly $100 million in Bitcoin, Ethereum, Tron, XRP, Stellar, Dogecoin, and Litecoin. TRM Labs mentioned the thieves despatched the looted Ethereum to new addresses they managed with stolen wrapped Ether (WETH), swapped for wrapped Bitcoin (WBTC), and exchanged for Bitcoin and despatched to mixing companies to obfuscate the cash.

Launched in 2018, the San Francisco-based TRM Labs crew contains former members of INTERPOL, the Australian Federal Police, the UK’s Nationwide Crime Company, IRS Felony Investigation, FBI, and the US Secret Service.

In Might, TRM Labs reported a drop in hacks within the first quarter of 2023. The agency attributed this to sanctions on the Twister Money Ethereum mixer final August. On the time, the US Treasury Division mentioned the company added the mixer to its Specifically Designated Nationals record as a result of criminals utilizing the service to launder cash.

TRM Labs emphasizes the significance of sturdy cybersecurity, highlighting the advantages of {hardware} safety modules for cryptographic key administration, whitelisting addresses to restrict funds switch to trusted recipients and safe offline storage for keys and passphrases.

“One of many compelling arguments for the DeFi group is that all of us have the power to be our personal financial institution,” the TRM Labs spokesperson mentioned. “A problem that comes with that freedom is that people shoulder a lot of the accountability of safeguarding their property.”

Different blockchain investigation firms embrace Peck Defend, Chainanylsis, Nansen, Eleptic, and CipherTrace.

On Friday, Peck Defend mentioned it had “detected an ongoing assault” on the Precisely protocol, a credit score market on the Optimism community. Web3 antivirus firm De.Fi reported Precisely was hacked for 4323.6 ETH, round $7.2 million.