With an estimated $3.54 billion in cryptocurrency reported stolen, North Korea continues to be a hotbed for illicit hacking activities, posing a significant threat to the global cybercrime landscape. Notably, the hacking groups linked to the Democratic People’s Republic of Korea (DPRK) are increasingly turning to Russian exchanges for laundering their ill-gotten crypto assets, a worrying trend that is raising alarms globally.
The Rising Tide of Crypto Laundering
Recent revelations have shed light on the evolving cybercrime tactics of the DPRK, with an increasing focus on using sophisticated attacks to fund their missile program. The findings coincide with recent military talks between Russian President Vladimir Putin and North Korean leader Kim Jong-Un, sparking concerns about a potential deepening partnership between the two nations’ cyber underworlds.
A significant incident recently highlighted this growing trend. A Russian exchange, notorious for its involvement in crypto laundering, reportedly received $21.9 million in cryptocurrency from the Harmony Protocol hack. This action, experts warn, signifies a significant escalation in the DPRK’s cybercrime activities, with the russian exchanges launder stolen crypto becoming an increasingly common occurrence.
Prospects of Recovery Remain Grim
The prospect of recovering stolen funds from these Russian exchanges, often uncooperative, is particularly grim. The value of stolen crypto associated with North Korean hacking groups, such as Lazarus, has already exceeded $340 million this year. While this is a decrease from the previous year’s total of over $1.65 billion, it still accounts for nearly 30% of all crypto stolen in hacks this year.
2022 was a particularly successful year for DPRK hackers, with the $600 Million Axie Infinity theft standing out as one of their most substantial exploits. Despite this year’s lower figures, Chainalysis warns that this does not necessarily indicate improved security or reduced criminal activity. The industry remains just one large hack away from crossing the $1B threshold in 2023.
DeFi Hacks Continue Unabated
Halfway through September, and the DeFi landscape is already witnessing a series of substantial exploits and hacks. Although not all of these are attributed to North Korean hacking collectives, the frequency and scale of these attacks are concerning. The largest of these is the $52 million CoinEx exchange exploit on September 12, with other protocols such as Stake Wallet, FloorDAO, and Coindroplet also losing funds this month.
It’s worth noting that transactions connecting breaches at Atomic Wallet, Alphapo, CoinsPaid, Stake.com, and CoinEx have been reported to involve the Lazarus Group, further highlighting the pervasive threat posed by North Korean hacking groups.
Given these developments, it’s more important than ever to stay vigilant and informed about the latest trends in the crypto world. Tools like cryptoview.io can provide invaluable insights, helping users stay a step ahead of potential threats.
