North Korean Hackers Behind Ethereum Heist
Nov 21, 2024
2 min read
South Korean authorities have confirmed that hackers associated with North Korea's military intelligence agency were responsible for a significant Ethereum heist in 2019, which resulted in the theft of assets valued at approximately $41.5 million at the time. The stolen Ethereum, totaling 342,000 tokens, is now worth over $1 billion, highlighting the ongoing threat posed by state-sponsored cybercrime.
Key Takeaways
North Korean hackers linked to military intelligence stole 342,000 Ethereum tokens in 2019.
The heist was valued at $41.5 million at the time, now worth over $1 billion.
More than half of the stolen assets were laundered through exchanges set up by the hackers.
The investigation involved cooperation with the FBI and identified the hackers as the Lazarus and Andariel groups.
The Heist Details
In 2019, a South Korean cryptocurrency exchange was infiltrated, leading to the theft of a substantial amount of Ethereum. The National Police Agency of South Korea reported that the hackers managed to transfer the stolen assets to an unidentified wallet, with the Upbit exchange confirming the transfer of 58 billion won worth of Ethereum.
The investigation revealed that the hackers laundered over half of the stolen assets through three crypto exchanges they had established, as well as through 51 other exchanges. This sophisticated operation underscores the advanced tactics employed by these cybercriminals.
Identification of the Hackers
While the police did not officially name the hackers, South Korean media have linked them to the Lazarus and Andariel groups, both of which are associated with North Korea's Reconnaissance General Bureau. The identification was based on an analysis of Internet Protocol addresses and the flow of the stolen assets.
This incident marks the first time North Korea has been explicitly identified as the source of a cyberattack on a South Korean crypto exchange, raising concerns about the country's ongoing cyber warfare capabilities.
Broader Implications
According to a panel of United Nations sanctions monitors, North Korea has been involved in numerous cyberattacks targeting cryptocurrency companies, with estimates suggesting around 97 attacks between 2017 and 2024, valued at approximately $3.6 billion. This trend indicates a growing reliance on cybercrime as a means of generating revenue for the regime.
Current Ethereum Market Situation
As the investigation into the heist continues, the Ethereum market is facing its own challenges. The price of Ethereum has struggled to maintain gains, recently hovering around the $3,060 support level. Analysts note that the cryptocurrency is currently consolidating and facing hurdles near the $3,200 resistance zone.
Current Price Levels: Ethereum is trading below $3,120 and the 100-hourly Simple Moving Average.
Resistance Levels: Key resistance is noted at $3,150 and $3,220.
Support Levels: Initial support is near $3,060, with further support at $3,000.
Conclusion
The revelation of North Korean hackers' involvement in the Ethereum heist serves as a stark reminder of the vulnerabilities within the cryptocurrency space. As authorities continue to investigate and recover stolen assets, the incident highlights the need for enhanced security measures within the crypto industry to protect against state-sponsored cyber threats.
Sources
Seoul says North Korean hackers behind 2019 Ethereum heist | News.az, News.Az.
Ethereum Price Faces Challenges: Will It Find Traction Soon?, Crypto Adventure.