this post was submitted on 25 Feb 2025

295 points (98.7% liked)

World News

783 readers

328 users here now

Rules:

Be a decent person
No spam
Add the byline, or write a line or two in the body about the article.

Other communities of interest:

!usa@ponder.cat

founded 5 months ago

MODERATORS

Deceptichum@quokk.au

Grainne@lemmy.dbzer0.com

PhilipTheBucket@ponder.cat

295

North Korea steals $1.5bn as it pulls off world’s biggest ever heist (www.aol.com)

submitted 2 weeks ago by Domino@lemmings.world to c/world@quokk.au

76 comments fedilink hide all child comments

The hackers stole more cryptocurrency in one attack than all the funds stolen by North Korean cyber criminals in 2024, when the rogue state’s cyber attackers made off with around $1.3bn in digital coins, according to cryptocurrency analysts Chainalysis.

top 50 comments

sorted by: hot top controversial new old

[+] LandedGentry@lemmy.zip 98 points 2 weeks ago* (last edited 5 days ago) (20 children)

[deleted]

[–] TheTechnician27@lemmy.world 33 points 2 weeks ago* (last edited 2 weeks ago) (1 children)

Specifically too it's very easy to steal in bulk. Sure scamming grandma and grandpa out of their life savings has way fewer safeguards with crypto than with fiat currency, but it's absolutely still possible without crypto and happens all the time. This is the monetary equivalent of stealing nearly 16,000 kg of gold – something unthinkable with fiat currency.

[–] jonc211@programming.dev 12 points 2 weeks ago (2 children)

Though someone did steal 3,000 kg of gold one time.

https://en.wikipedia.org/wiki/Brink's-Mat_robbery

[–] Rai@lemmy.dbzer0.com 8 points 2 weeks ago (1 children)

That’s fucking WILD, I have never read about that.

It is insane that you can do that kind of a thing just sitting in front of a laptop with Tails now, though.

[–] jonc211@programming.dev 3 points 1 week ago* (last edited 1 week ago) (1 children)

Yeah, it’s pretty crazy

They made a TV mini-series about it a few years ago. It’s called The Gold. If you’re in the UK, it’s on BBC iPlayer. If not, then there may be other means of acquiring it!

load more comments (1 replies)

[–] turtle@lemm.ee 5 points 2 weeks ago

Holy moly. 3,000 kg of gold at today's price would be $281,382,000 (281 million dollars). Gold is $93,794 per kg at the moment.

[–] miak@lemmy.world 16 points 2 weeks ago* (last edited 2 weeks ago) (9 children)

Are there crypto scams? yes, and plenty of them. Can you buy drugs with them? sure (and I thinks that's great!) Do either of the above statements get at the core issue here? not at all.

The issue here is not with the crypto itself. The issue here is the same issue that is regularly a problem anywhere software is deployed, digital security. The take away here is that many (all?) crypto exchanges are failing to properly secure their systems. Which is why the general rule that anybody investing in crypto should follow is never keep crypto in an exchange wallet unless you plan on trading it in the very short term. As an extension of that rule, you should never keep your crypto in a wallet that you don't hold the private keys for. If you don't have the private key for the wallet, it's not your wallet. Not your wallet, not your crypto.

[–] Rentlar@lemmy.ca 17 points 2 weeks ago* (last edited 2 weeks ago) (2 children)

I have never really understood exchanges tbh. Centralizing decentralized currency feels like getting the downsides of normal money/investments with fewer of the benefits.

[–] CarbonBasedNPU@lemm.ee 17 points 2 weeks ago

Its because crypto doesn't work for 90% of things like people want to too so you have to use an exchange to make it faster.

[–] PokerChips@programming.dev 4 points 1 week ago

It's so the lambs can pretend to own "stock" in crypto therefore defeating the whole purpose of cryptocurrencies. And then it gets shorted and margined and bulshitted..

[–] AwesomeLowlander@sh.itjust.works 4 points 2 weeks ago (1 children)

The take away here is that many (all?) crypto exchanges are failing to properly secure their systems.

When your adversary is a nation-state with an actual army of hackers that can work 24/7 and deploy 0-days, it's hard to say for sure the exchange is at fault for not handling security properly. This isn't a lone Kevin Mitnick pulling a stunt, this is literal cyber warfare.

load more comments (1 replies)

[–] burgerpocalyse@lemmy.world 3 points 1 week ago (1 children)

i feel the issue is with crypto

load more comments (1 replies)

load more comments (5 replies)

[–] Empricorn@feddit.nl 3 points 2 weeks ago (1 children)

Yeah, but crypto bros specifically told me "Blockchain! Anonymous cryptographic fungible NFT AI!"

[–] apotheotic@beehaw.org 2 points 1 week ago

Love me a fungible non fungible token

load more comments (17 replies)

[–] Rentlar@lemmy.ca 83 points 2 weeks ago (1 children)

North Korea's GDP would technically be up 5% from this. Great success.

[–] someguy3@lemmy.world 4 points 2 weeks ago

Doesn't cagr though.

[–] HootinNHollerin@quokk.au 45 points 2 weeks ago (2 children)

Looks like hexbear will be funded after all

[–] Zagorath@lemm.ee 5 points 2 weeks ago (2 children)

You joke, but it looks like they actually did manage to regain their domain. Not sure how.

[–] IMALlama@lemmy.world 15 points 2 weeks ago (2 children)

Money most likely.

[–] nomy@lemmy.zip 8 points 2 weeks ago

I heard they just a bunch of crypto they forgot about.

[–] AES_Enjoyer@reddthat.com 3 points 1 week ago

Nah, hexbear admins and users were pretty clear and unanimous from minute 1 that they'd rather have that money spent in mutual aid (go visit c/mutual_aid in Hexbear if you're interested) than in giving money to a cyberlandlord.

[–] freamon@preferred.social 5 points 1 week ago

Last I read, the admin who was a day late in paying Sav for the renewal was actually able to transfer the domain to a different registrar (PorkBun) before Sav's auction of the domain was complete. This maneuver was either something that Sav's auction designers hadn't anticipated, or the auction was compromised because the main bidder (j_s_) was a hexbear user who'd found a way to make unauthenticated bids.

At any rate, I don't think they paid thousands for it.

[–] AES_Enjoyer@reddthat.com 2 points 1 week ago

Sadly I'm afraid Hexbear doesn't get the Xi-bux it rightly deserves, it's even blocked by the great Chinese firewall (thought the reasons aren't clear). I wish the left was as well funded as people claim :(

[–] GenosseFlosse@feddit.org 38 points 2 weeks ago (1 children)

Isn't it only worth 1.5 billion if you manage to sell it? How would you liquidate this much crypto?

[–] nomy@lemmy.zip 42 points 2 weeks ago

Launder it and slowly sell it off through sock puppets.

They're a nation-state level actor, they have significant resources of their own and solid ties to both China and Russia, who are even more skilled and have even more resources.

[–] NoIdiots@lemmy.cafe 21 points 1 week ago

Say what you want about North Korea but they're the only one ballsy enough to take care of our right-wingers.

[–] __nobodynowhere@sh.itjust.works 17 points 2 weeks ago

Did Kim steal Musk's jacket?

[–] pelespirit@sh.itjust.works 15 points 2 weeks ago (3 children)

First of all, I love that this is an AOL link. AOL is still around, eh?

Second, isn't crypto supposed to be trackable in the ledger? How are they hiding that much coin under a new name? That's the whole point of crypto.

[–] nao@sh.itjust.works 7 points 2 weeks ago (1 children)

Why would they need to hide it?

load more comments (1 replies)

[–] AwesomeLowlander@sh.itjust.works 2 points 2 weeks ago

There are ways to clean crypto, by mixing it with other sources. See crypto mixers

load more comments (1 replies)

[–] DarkCloud@lemmy.world 11 points 2 weeks ago

Oh I'm sure that'll settle things down. World peace can't be that far away!

[–] nomoredrama@lemmy.world 10 points 2 weeks ago (1 children)

The article actually doesn't provide any proof it was North Korea. Why do they think it was North Korea?

[–] jagged_circle@feddit.nl 5 points 2 weeks ago

Probably Israel leaving clues to make it look like DPRK

[–] someguy3@lemmy.world 9 points 2 weeks ago* (last edited 2 weeks ago) (2 children)

Agents from Pyongyang were able to breach the systems of Dubai-based exchange Bybit to steal the digital coin Ether, according to security analysts.

*More

Hackers gained access to Bybit’s internal systems using so-called “phishing” email, which prompted an employee to input their login details to a seemingly legitimate website that was actually compromised.

The hackers were then able to gain access to a so-called “cold wallet” – a supposedly secure cryptocurrency storage device that holds coins offline and away from the internet. When Bybit came to transfer funds from the offline wallet to its online systems, the hackers sabotaged the transfer and stole the funds.

[–] martinb@lemmy.sdf.org 3 points 2 weeks ago* (last edited 2 weeks ago)

So hot wallets?

No. From the article, phishing to get access to a cold wallet..

load more comments (1 replies)

[–] LainTrain@lemmy.dbzer0.com 9 points 2 weeks ago (1 children)

Any technical juicy deets?

[–] Tar_alcaran@sh.itjust.works 5 points 2 weeks ago

They phished an employee and got cold-wallet access.

[–] jagged_circle@feddit.nl 8 points 2 weeks ago

Is this the cause of the dip?

[–] TacoButtPlug@sh.itjust.works 5 points 1 week ago

I'm sure Trump will give Kim high fives

load more comments