The U.S. Federal Bureau of Investigation (FBI) and Japan’s National Police Agency have confirmed that the North Korean hacking group TraderTraitor orchestrated the May 2024 hack of Japanese exchange DMM Bitcoin.
According to the FBI, the group is known for using “targeted social engineering” tactics in its cyber-attacks. The law enforcement agency claimed that the DMM Bitcoin’s breach matched their attack pattern.
The FBI reported that the breach, which led to the loss of 4,502.9 Bitcoin (approximately 48.2 billion yen or $305 million), started with a North Korean hacker posing as a LinkedIn recruiter. This hacker targeted an employee at Ginco, a company that provides wallet management services to DMM Bitcoin. Under the pretence of a pre-employment test, the hacker shared a malicious Python script via a link on GitHub. Once the victim copied this code to their own GitHub account, the hacker gained access to Ginco’s systems.
TraderTraitor then used the employee’s credentials to exploit Ginco’s unencrypted communication system. They manipulated a legitimate transaction request from DMM Bitcoin, thus resulting in the transfer of $305 million worth of Bitcoin to wallets they controlled.
The FBI, in collaboration with the U.S. Department of Defense Cyber Crime Center, led the investigation and vowed to continue combating North Korea’s illicit use of cybercrime and cryptocurrency theft to fund its regime.
Notably, the agency linked TraderTraitor to North Korea’s infamous Lazarus Group; it also stated it has been tracking its activities under multiple aliases like “Jade Sleet”, “UNC4899,” and “Slow Pisces.”
Meanwhile, SBI VC Trade, a division of Japan’s SBI Holdings, announced its acquisition of all customer accounts and assets from DMM Bitcoin earlier this month. The transfer, encompassing all customers denominated in cryptocurrencies and Japanese yen, is expected to conclude by March 2025. SBI VC Trade noted that it will also integrate 14 additional crypto trading pairs previously offered by DMM Bitcoin and ensure a smooth and customer-focused transition.
If you want to read more news articles like this, visit DeFi Planet and follow us on Twitter, LinkedIn, Facebook, Instagram, and CoinMarketCap Community.
“Take control of your crypto portfolio with MARKETS PRO, DeFi Planet’s suite of analytics tools.”
