Market News

North Korean Hacker Group Linked to DMM Bitcoin Asset Theft: What You Need to Know

cryptocurrency theft, Cybercrime, Cybersecurity, DMM Bitcoin, malware attack, North Korea, TraderTraitor

A hacker group linked to North Korea, called TraderTraitor, stole approximately 48.2 billion yen, or about $307 million, from the Tokyo-based cryptocurrency exchange DMM Bitcoin Co. in May. Japanese police, along with the U.S. Department of Defense and FBI, identified the group and traced the stolen bitcoin to them. An investigation revealed that a DMM Bitcoin employee was tricked into downloading malware after being contacted by someone posing as a recruiter on LinkedIn. Following the breach, DMM Bitcoin decided to cease operations after securing funds to cover customer losses. Authorities are committed to tackling North Korea’s cybercrime activities and protecting the integrity of the cryptocurrency industry.



A North Korea-linked hacker group, known as TraderTraitor, has been accused of stealing a staggering 48.2 billion yen (around 307 million dollars) from DMM Bitcoin Co., a cryptocurrency exchange based in Tokyo. This incident occurred in May, as reported by Japanese police on Tuesday. The investigation was a collaborative effort involving the U.S. Department of Defense and the Federal Bureau of Investigation (FBI).

DMM Bitcoin announced earlier this month that it would cease operations following the unauthorized withdrawal of funds detected on May 31. In September, Japan’s Financial Services Agency intervened, ordering the exchange to enhance its risk management protocols after evaluating its operations. Fortunately, no customers experienced financial losses, as DMM Bitcoin secured 55 billion yen from a related company to cover the missing assets.

The investigation revealed that an employee at DMM Bitcoin was contacted via LinkedIn by someone posing as a recruiter. This clever deception led to the installation of malware that compromised the wallet management system, allowing the hackers to manipulate transaction details and redirect funds illegally. Police linked the stolen bitcoin to an account managed by TraderTraitor, believed to have ties to North Korea’s Lazarus hacking group.

Authorities, including the police and FBI, stated their commitment to exposing and tackling North Korea’s cybercrimes, which are often aimed at generating revenue for the regime. The rise of such incidents highlights the ongoing concerns about cybersecurity within the cryptocurrency sector.

As the world becomes more digitally connected, incidents like this raise awareness about the vulnerabilities of cryptocurrency exchanges. Security measures must continue to evolve to protect assets from these sophisticated hacking groups.

For more insights into similar cyberattacks, you can read about Japanese publishers paying ransoms after breaches or other cryptocurrency industry challenges.

Related coverage:
– Japanese publisher paid $3 million to hacker group after cyberattack
– Japan’s DMM Bitcoin to end business after losing 48 billion yen in leak
– Shiba Inu of “doge” meme fame leaves enduring legacy, online and off

What is the North Korean hacker group involved in the DMM Bitcoin theft?

The North Korean hacker group involved in the DMM Bitcoin theft is known for cyberattacks aimed at stealing digital currencies and sensitive information. They are believed to be linked to the North Korean government and operate in various countries.

How did the hackers steal DMM Bitcoin assets?

The hackers used sophisticated techniques, including phishing emails and malware, to gain access to DMM’s systems. Once inside, they took control of accounts and transferred Bitcoin to their own wallets.

Why does North Korea target cryptocurrency exchanges?

North Korea targets cryptocurrency exchanges because they are a significant source of funds. With international sanctions affecting their economy, stealing cryptocurrencies provides them with the cash needed to fund various activities.

How can individuals protect themselves from similar attacks?

Individuals can protect themselves by using strong, unique passwords, enabling two-factor authentication, and being cautious about unsolicited emails or messages. Regularly updating software can also help keep their devices secure.

What should businesses do to safeguard against such cyber threats?

Businesses should invest in cybersecurity training for employees, conduct regular security audits, and implement strong access controls. Having a response plan ready for potential cyberattacks can also minimize damage if an incident occurs.

Leave a Comment

DeFi Explained: Simple Guide Green Crypto and Sustainability China’s Stock Market Rally and Outlook The Future of NFTs The Rise of AI in Crypto
DeFi Explained: Simple Guide Green Crypto and Sustainability China’s Stock Market Rally and Outlook The Future of NFTs The Rise of AI in Crypto
DeFi Explained: Simple Guide Green Crypto and Sustainability China’s Stock Market Rally and Outlook The Future of NFTs The Rise of AI in Crypto