In 2024, North Korean hackers have been implicated in 61% of cryptocurrency thefts, stealing an astonishing $1.34 billion across 47 incidents. This marks a 102.88% increase from 2023’s $660.5 million stolen, according to a recent report by Chainalysis. These figures make 2024 the most profitable year for North Korea-affiliated cybercriminals, posing significant challenges to global cybersecurity efforts.
Advanced Hacking Tactics
North Korea-linked hackers are adopting increasingly sophisticated methods. A growing trend involves posing as smart contract developers to insert hidden vulnerabilities or backdoors in blockchain projects. These tactics have enabled them to execute high-profile attacks, such as the $50 million theft from Radiant Capital.
In that instance, a North Korean-linked hacker disguised as a contractor sent malware-laden files to an employee. The malware established a permanent backdoor on macOS systems while displaying a legitimate PDF, evading detection.
Luis Lubeck, services project manager at crypto cybersecurity firm Hacken, noted that these actors are now leveraging artificial intelligence to create fake personas and deep fakes, complicating efforts to identify malicious actors. “This partnership could escalate global cyber conflicts and reshape how cyber warfare will take place with alliances instead of solo efforts from one state,” Lubeck said.
The Role of Crypto in North Korea’s Agenda
Cryptocurrencies stolen by North Korean hackers are reportedly funding the country’s development of weapons of mass destruction and ballistic missile programs. Some estimates suggest these hacking efforts contribute to half of North Korea’s missile funding.
Collaborations between North Korea and Russia are further exacerbating the situation. Shared tools and expertise between the two nations have heightened global cyber threats, making attribution and response efforts more complex.
A Call for Global Collaboration
The crypto industry faces a pressing need to counter North Korea’s cyber operations. Strengthened international collaboration on cryptocurrency tracking, enhanced Know Your Customer (KYC) measures on exchanges, and improved real-time intelligence sharing are among the potential solutions.
Lubeck emphasized that while sanctions are important, their effectiveness is limited due to evasion tactics. He urged global stakeholders to prioritize proactive measures, noting that “new tactics leveraging AI and advanced phishing attacks require a unified and aggressive response.”
North Korea’s escalating cryptocurrency theft underscores the evolving nature of cybercrime in the blockchain space. With advanced tactics and global alliances reshaping the cyber threat landscape, the need for robust international cooperation and advanced cybersecurity measures has never been more critical.
The fight against crypto-fueled cybercrime is not just about protecting digital assets—it’s about safeguarding global security.
Bitcoin 
Ethereum 
Tether 
XRP 
BNB 
Solana 
Dogecoin 
USDC 
Lido Staked Ether 
Cardano