Blockchain

N Korea Hackers Prime Suspects in $100m Harmony Crypto Heist

 

North Korean hackers are the prime suspects in last week’s $100 million crypto hack at a US company, three digital investigative firms said.

The cryptoassets were stolen on June 23 from Horizon Bridge, a service operated by the Harmony blockchain that allows assets to be transferred to other blockchains.

Since then, activity by the hackers suggests they may be linked to North Korea, which experts say is among the most prolific cyber attackers.

UN sanctions monitors says Pyongyang uses the stolen funds to support its nuclear and missile programmes.

The style of attack and high velocity of structured payments to a mixer – used to obscure the origin of funds – is similar to previous attacks that were attributed to North Korea-linked actors, Chainalysis, a blockchain firm working with Harmony to investigate the attack, said on Twitter on Tuesday.

That conclusion was echoed by other investigators.

 

Transaction Behaviour Analysis

“Preliminarily this looks like a North Korean hack based on transaction behaviour,” said Nick Carlsen, a former FBI analyst who now investigates North Korea’s cryptocurrency heists for TRM Labs, a US-based firm.

There are strong indications that North Korea’s Lazarus Group may be responsible for this theft, based on the nature of the hack and the subsequent laundering of the stolen funds, another firm, Elliptic, said in a report on Thursday.

“The thief is attempting to break the transaction trail back to the original theft,” the report said. “This makes it easier to cash out the funds at an exchange.”

If confirmed, the crypto hack would be the eighth exploit this year – totalling $1 billion in stolen funds – that could be attributed to North Korea with confidence, accounting for 60% of total funds stolen in 2022, Chainalysis said.

North Korea’s ability to cash in on its stolen assets may have been complicated by the recent drop in cryptocurrency values, experts and South Korean officials said, possibly threatening a key source of funding for the sanctions-strapped country.

 

  • Reuters with additional editing by Jim Pollard

 

 

ALSO READ:

 

Crypto Crash Hits Proceeds of North Korean Hacker Heists

 

Hackers Grab $615m in Project Ronin Crypto Heist

 

US Charges Couple Over $4.5bn Hong Kong Crypto Heist

 

 

Jim Pollard

Jim Pollard is an Australian journalist based in Thailand since 1999. He worked for News Ltd papers in Sydney, Perth, London and Melbourne before travelling through SE Asia in the late 90s. He was a senior editor at The Nation for 17+ years and has a family in Bangkok.

Recent Posts

Investors Suspect Beijing Behind Controlled Yuan Decline

The currencies of China's trading partners have weakened faster than the yuan recently, eroding the…

15 hours ago

Shimao Bondholders Group to Vote Against Debt Revamp Plan

The creditors’ opposition to the proposal could be a major problem for the ailing property…

16 hours ago

China’s Country Garden ‘Hires Kroll For Liquidation Assessment’

Sources say China's biggest developer, which went into default in October with debts of $190…

19 hours ago

Xi to Visiting Dutch PM: No One Can Stop China’s Tech Progress

The Chinese president also warned his Dutch counterpart against restricting chip ties with Beijing, amid…

19 hours ago

Alibaba Ditches Cainiao IPO, Offers to Buy Remaining Shares

The e-commerce giant has abandoned plans to list its cross-border logistics unit and is offering…

21 hours ago

China ‘Closing Gap’ on US in Quantum Technology Race – SCMP

China leads the world in the number of patents filed for quantum computing technology but…

21 hours ago