U.S. Seizes Cryptocurrency Value $30 Million Stolen by North Korean Hackers

Greater than $30 million price of cryptocurrency plundered by the North Korea-linked Lazarus Group from on-line online game Axie Infinity has been recovered, marking the primary time digital belongings stolen by the risk actor have been seized.

“The seizures characterize roughly 10% of the entire funds stolen from Axie Infinity (accounting for value variations between time stolen and seized), and reveal that it’s turning into tougher for unhealthy actors to efficiently money out their ill-gotten crypto good points,” Erin Plante, senior director of investigations at Chainalysis, stated.

The event arrives greater than 5 months after the crypto hack resulted within the theft of $620 million from the decentralized finance (DeFi) platform Ronin Community, with the attackers laundering a majority of the proceeds – amounting to $455 million – by the Ethereum-based cryptocurrency tumbler Twister Money.


The March 2022 cryptocurrency heist resulted in losses totaling 173,600 ETH price about $594 million on the time and $25.5 million in USDC stablecoin, making it the most important cryptocurrency theft so far.

Though Twister Money has emerged as a well-liked software for anonymizing digital foreign money transactions, its abuse by malicious actors such because the Lazarus Group to money out the illicitly obtained belongings has landed it within the crosshairs of the U.S. authorities, which imposed sanctions in opposition to the service final month.

The blockchain analytics agency stated that the blocklisting compelled the adversary to maneuver away from the mixer in favor of DeFi companies akin to crypto bridges to chain hop and transfer digital belongings between chains in a bid to obscure the path of funds.

“The hacker bridged ETH from the Ethereum blockchain to the BNB chain after which swapped that ETH for USDD, which was then bridged to the BitTorrent chain,” Plante stated, detailing the change between a number of completely different sorts of cryptocurrencies in a single transaction to launder the stolen funds.


The Lazarus Group is a prolific superior persistent risk (APT) that is pushed by efforts to help North Korea’s operational targets, which contains espionage and producing income for the sanctions-hit nation by putting monetary establishments. Many of the cyber operations are performed by components inside the Reconnaissance Normal Bureau.

The seizure additionally comes as six customers of Twister Money, together with Coinbase staff, filed a lawsuit this week in opposition to the U.S. Treasury Division, Treasury Secretary Janet Yellen, and different officers over their determination to slap sanctions on the platform.

Newsletter Updates

Enter your email address below to subscribe to our newsletter

Leave a Reply