Share this article
North Korean Hackers Lazarus Group Stolen $3B in Cryptocurrency
The hacker group stole the funds over the last six years, which was likely used to fund the country's projects, a report said.
By CoinDesk
Updated Mar 8, 2024, 5:56 p.m. Published Dec 1, 2023, 4:15 p.m.
(Soohwan Oh, CoinDesk Korea) - North Korea-linked hacker organization Lazarus Group has stolen $3 billion in cryptocurrency over the past six years, according to a report by cybersecurity firm Recorded Future.
The report released on Thursday reveals that in 2022 alone, the group plundered $1.7 billion in cryptocurrency, likely to fund North Korean projects.
STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
Blockchain data analysis firm Chainalysis indicates that out of this total, $1.1 billion was stolen from decentralized finance (DeFi) platforms. A September report published by the U.S. Department of Homeland Security (DHS) as part of its Analytic Exchange Program (AEP) also highlighted Lazarus's exploitation of DeFi protocols.
The U.S. Treasury Department introduced new sanctions against North Korea's cyber activities, adding 'Sinbad' to the Office of Foreign Assets Control's specially designated sanctions list. Sinbad has been implicated in laundering the cryptocurrencies stolen by the Lazarus Group.
The group is known to have used Sinbad's mixer services to hide the origins of the stolen funds. Such mixers obscure individual transaction trails by blending multiple users' transactions.
Lazarus Group's specialty is fund theft. In 2016, they hacked the Bangladesh Central Bank, stealing $81 million. In 2018, they hacked the Japanese cryptocurrency exchange Coincheck, diverting $530 million, and attacked the Central Bank of Malaysia, stealing $390 million.
Read more: FBI Says North Korean Hackers May Try to Sell $40M of Bitcoin
The story first appeared in CoinDesk Korea.
More For You
What to know:
- As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
- GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
- Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
More For You
These Three Metrics Show Bitcoin Found Strong Support Near $80,000
Onchain data shows multiple cost basis metrics confirm heavy demand and investor conviction around the $80,000 price level.
What to know:
- Bitcoin rebounded from the $80,000 region after a sharp correction from its October all time high, with price holding above the average entry levels of key metrics.
- The convergence of the True Market Mean, U.S. ETF cost basis, and the 2024 yearly cost basis around the low $80,000 range highlights this zone as a major area of structural support.
Top Stories
