North Korean hacking activity ceases after regulators implement KYC - Report

Published at: Dec. 22, 2022

According to a new press report published by South Korea's National Intelligence Service (NIS), North Korean hackers have stolen more than 800 billion Korean won ($620 million) worth of cryptocurrencies from decentralized finance, or DeFi, platforms this year. The agency also revealed it blocked a daily average of 1.18 million attackers perpetrated by national and international hacking organizations in November. 

However, a NIS spokesperson revealed via local news outlet Kyunghyang Shinmun that all of the $620 million stolen by North Korean hackers through DeFi exploits occurred overseas, adding: 

"In Korea, virtual asset transactions have been switched to real-name transactions and security has been strengthened, so there is no damage."

In 2021, South Korea implemented new cryptocurrency trading rules requiring clients to create a real-name account with the same bank as their cryptocurrency exchange to deposit or withdraw funds. Both the bank and the exchange are then required to verify the client's identity. In addition, exchanges must obtain a license from the Financial Services Commission before commencing operations.

North Korean hacker syndicates, such as Lazarus Group, have been linked to a number of high-profile DeFi breaches this year, such as the $100 million Harmony attack. Experts said that such attacks are a means of generating foreign currency reserves in the face of strict commercial sanctions imposed by the international community. The NIS also warned that North Korean cyber attacks would intensify next year:

"It is necessary to analyze attacks as closely as defenses. Because one hacker organization has all the attack information and does not forget it. It is necessary to gather information related to malicious code scattered by various attackers to find meaningful insights."
Tags
Related Posts
‘DeFi done right’: Layer-one protocol launches mainnet
A decentralized finance protocol has launched its mainnet — describing it as a crucial step on the journey to a frictionless financial future. Radix, which describes itself as a platform for smart money, is also launching Instapass with its Olympia mainnet — an optional user and developer service that delivers the world’s first single sign-on solution for building compliant DeFi. The Radix mainnet is being positioned as a generational improvement in the history of decentralized ledger computing — and one that delivers 100 times more executional efficiency than the Ethereum Virtual Machine. This comes hot on the heels of the …
Decentralization / July 29, 2021
‘Nobody is holding them back’ — North Korean cyber-attack threat rises
North Korea-backed cyberattacks on cryptocurrency and tech firms will only become more sophisticated over time as the country battles prolonged economic sanctions and resource shortages. Former CIA analyst Soo Kim told CNN on Sunday that the process of generating overseas crypto income for the regime has now become a “way of life” for the North Koreans: “In light of the challenges that the regime is facing — food shortages, fewer countries willing to engage with North Korea [...] this is just going to be something that they will continue to use because nobody is holding them back, essentially.” She also …
Blockchain / July 12, 2022
DeFi security loses rose 47.4% in 2022 to hit $3.64B: Report
According to a Jan. 5 report published by Chinese blockchain security firm LianAn Technology, decentralized finance, or DeFi, exploits across blockchains worldwide totaled $3.64 billion in 2022. This represented a rise of 47.4% compared to the loss of $2.44 billion in 2021. The incidents increased in quantity despite a steep 80% loss in DeFi total value locked during the year. Out of the 2022 amount, funds lost during cross-chain bridge hacks amounted to $1.89 billion across 12 incidents — the highest in the category. Overall, attacks on the Ethereum, BNB, and Solana chains accounted for the majority of exploits. Out …
Technology / Jan. 5, 2023
5 sneaky tricks crypto phishing scammers used last year: SlowMist
Blockchain security firm SlowMist has highlighted five common phishing techniques crypto scammers used on victims in 2022, including malicious browser bookmarks, phony sales orders and trojan malware spread on messaging app Discord. It comes after the security firm recorded a total of 303 blockchain security incidents in the year, with 31.6% of these incidents caused by phishing, rug pull or other scams, according to a Jan. 9 SlowMist blockchain security report. Malicious browser bookmarks One of the phishing strategies makes use of bookmark managers, a feature in most modern browsers. SlowMist said scammers have been exploiting these to ultimately gain …
Blockchain / Jan. 10, 2023
BitKeep remains on track to fully compensate victims of $8M APK exploit
According to an official Telegram statement on March 1, Singaporean cross-chain crypto wallet developer BitKeep says it has reimbursed 50% of user assets lost during a security breach stemming from Dec. 26, 2022. On the date of the incident, an estimated $8 million was stolen by hackers after BitKeep's APK 7.2.9 (Android Package Kit) installation package was hijacked and swapped. Users who downloaded the malware subsequently saw their private keys compromised, leading to the theft of assets. As told by BitKeep, a total of 6,731 verified addresses were breached during the incident. The firm has since completed reimbursing 50% of …
Blockchain / March 2, 2023