FBI Identifies Wallets Holding Cryptocurrency Funds Stolen by North Korea Summary:
Cyber Security Threat Summary:
The FBI in the United States issued a cautionary notice regarding the potential efforts of threat actors associated with North Korea to convert pilfered cryptocurrency, totaling over $40 million in value.
In a disclosure, the Federal Bureau of Investigation outlined the actions of six cryptocurrency wallets operated by entities connected to North Korea. These wallets possess approximately 1,580 Bitcoin, equivalent to around $41 million based on current valuations. Authorities suspect these funds are connected to the recent heist of a substantial sum of cryptocurrency, amounting to hundreds of millions of dollars.
“The investigation conducted by the FBI revealed that the TraderTraitor-affiliated actors moved approximately 1,580 bitcoin from several cryptocurrency heists to the following wallets:
TraderTraitor-affiliated hackers stole $100 million from Atomic Wallet in June, $60 million from Alphapo, and $37 million from CoinsPaid in July.” (SecurityAffairs, 2023).
Security Officer Comments:
Historically, Advanced Persistent Threat (APT) groups with ties to North Korea have primarily directed their efforts toward stealing cryptocurrency assets. Research indicates that the breach of Harmony's Horizon bridge and Sky Mavis' Ronin Bridge can be attributed to these North Korea-linked threat actors.
The FBI advises private sector entities to meticulously scrutinize the blockchain data associated with these wallet addresses and exercise caution when engaging in transactions directly involving or stemming from these addresses. The FBI's commitment to unveiling and countering North Korea's involvement in illicit activities, encompassing cybercrimes and the pilfering of virtual currency, remains resolute.
Suggested Correction(s):
Link(s):
https://securityaffairs.com/149798/hacking/north-korea-cash-out-stolen-crypto-assets.html