iTnews Asia
  • Home
  • News
  • Security

North Korea likely behind new cryptocurrency hack

North Korea likely behind new cryptocurrency hack

US$100 million stolen from Horizon Bridge.

By Josh Smith on Jun 30, 2022 2:19PM

North Korean hackers are most likely behind an attack last week that stole as much as US$100 million (S$139 million) in cryptocurrency from a US company, three digital investigative firms have concluded.

The crypto assets were stolen on June 23 from Horizon Bridge, a service operated by the Harmony blockchain that allows assets to be transferred to other blockchains.

Since then, activity by the hackers suggests they may be linked to North Korea, which experts say is among the most prolific cyber attackers.

UN sanctions monitors say Pyongyang uses the stolen funds to support its nuclear and missile programmes.

The style of attack and high velocity of structured payments to a mixer - used to obscure the origin of funds - is similar to previous attacks that were attributed to North Korea-linked actors, Chainalysis, a blockchain firm working with Harmony to investigate the attack, said on Twitter on Tuesday.

That conclusion was echoed by other investigators.

"Preliminarily this looks like a North Korean hack based on transaction behaviour," said Nick Carlsen, a former FBI analyst who now investigates North Korea's cryptocurrency heists for TRM Labs, a US-based firm.

There are strong indications that North Korea’s Lazarus Group may be responsible for this theft, based on the nature of the hack and the subsequent laundering of the stolen funds, another firm, Elliptic, said in a report on Thursday.

"The thief is attempting to break the transaction trail back to the original theft," the report said. "This makes it easier to cash out the funds at an exchange."

If confirmed, the attack would be the eighth exploit this year – totalling US$1 billion in stolen funds – that could be attributed to North Korea with confidence, accounting for 60 percent of total funds stolen in 2022, Chainalysis said.

North Korea's ability to cash in on its stolen assets may have been complicated by the recent drop in cryptocurrency values, experts and South Korean officials told Reuters, possibly threatening a key source of funding for the sanctions-strapped country.

To reach the editorial team on your feedback, story ideas and pitches, contact them here.
Copyright Reuters
© 2019 Thomson Reuters. Click for Restrictions.
Tags:
chainalysis crypto heist horizon bridge lazarus group pyongyang security software

Related Articles

  • Many Singapore and APAC enterprises held back by poor software quality
  • How making identity a priority can help bring clarity to AI chaos
  • Five tips a CIO or CSO should know to stop employee-driven IP theft
  • StarHub launches app to protect customers from scam calls and SMS
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Five tips a CIO or CSO should know to stop employee-driven IP theft

Five tips a CIO or CSO should know to stop employee-driven IP theft
Beware the rise of ‘vishing’ as a cyber threat in APAC

Beware the rise of ‘vishing’ as a cyber threat in APAC
How can we bolster our resilience against AI-enabled e-mail attacks?

How can we bolster our resilience against AI-enabled e-mail attacks?
Proofpoint CEO: A tool-based approach for cybersecurity is impractical

Proofpoint CEO: A tool-based approach for cybersecurity is impractical
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of Lighthouse Independent Media's Privacy Policy and Terms & Conditions.