North Korea-Linked Hackers Steal Record $2B in 2025, Chainalysis Says

Published at 2025-12-18 13:15:25

Chainalysis released a report showing North Korea–linked hacking groups moved an estimated $2 billion in cryptocurrency in 2025, continuing a trend toward high-value strikes against centralized platforms. The firm notes attackers have concentrated on fewer, larger operations—a pattern that began in 2024 and was exemplified by the $1.4 billion Bybit breach.

The scale of these thefts heightens risks for exchanges, amplifies concerns about sanctions evasion, and puts renewed focus on AML controls and custody hardening. Chainalysis warns that once stolen assets hit mixers or cross-chain bridges recovery is difficult, so regulators and market participants should expect increased scrutiny, pressure for stronger incident response, and calls for greater transparency from centralized platforms.

North KoreaCrypto TheftBybitChainalysisSanctionsExchange Security
Share on:

Related news

Iran Weighs Accepting Crypto as Transit Fees for Oil Tankers

The Financial Times reports Iran is considering accepting cryptocurrency and other digital payment methods as transit fees from fully loaded oil tankers passing through the Strait of Hormuz. The move could shift how energy transit payments are processed and raise regulatory concerns.

CryptocurrencyPaymentsIranOilSanctionsStrait of Hormuz
Published at 2026-04-08 13:30:32
Rwanda Central Bank Warns Against FRW Crypto P2P Trading

Rwanda's central bank has warned that peer-to-peer cryptocurrency trading in Rwandan francs (FRW) is not authorized, issued three days after Bybit added FRW support on its P2P platform. The notice flags potential financial and consumer protection risks for local users and exchanges.

RwandaCentral BankP2P TradingCryptocurrencyBybitRegulation
Published at 2026-04-08 03:30:08
Solana DEX Stabble Urges Liquidity Exit After North Korea Staff Link

Solana-based DEX Stabble on Apr. 7 urged all liquidity providers to withdraw funds immediately after on-chain investigator ZachXBT linked a former employee to suspected North Korean IT operations. The warning raises security and compliance concerns and could affect SOL and LINK liquidity.

SolanaLiquidityDEXSecurityZachXBTNorth Korea
Published at 2026-04-07 20:45:07
North Korean State-Backed Hackers Steal $270M from Drift Protocol After Six-Month Infiltration

Drift Protocol was hit by a $270 million breach on April 1 after a roughly six‑month infiltration by a North Korean state‑sponsored hacking group. The incident heightens concerns about DeFi security, fund recovery, and possible sanctions evasion.

DeFiNorth KoreaSecurityHackDrift Protocol
Published at 2026-04-06 07:45:09
Solana Founder Calls Drift Exploit 'Terrifying' After North Korea Attribution

Solana co-founder Anatoly Yakovenko called the recent Drift Protocol exploit "terrifying" after reports tied the incident to a sophisticated social engineering operation attributed to North Korean actors. The breach underscores growing state-linked threats to decentralized finance.

SolanaDeFiHackSecurityNorth KoreaAnatoly YakovenkoDrift Protocol
Published at 2026-04-05 07:00:12

DeFi

All DeFi posts

Bitcoin

All Bitcoin posts

Derivatives

All Derivatives posts

On-Chain

All On-Chain posts

Dogecoin

All Dogecoin posts