ByBit crypto theft: North Korea’s TraderTraitor hackers stole $1.5B, FBI says

February 26, 2025 09:56 PM PST | By Invezz

ByBit crypto theft: North Korea’s TraderTraitor hackers stole $1.5B, FBI says — Image source: Invezz

Crypto exchanges at risk

ByBit, which caters to over 60 million users worldwide, disclosed on Friday that an attacker gained control of an ether wallet, transferring its holdings to an unknown address.

The security breach has raised concerns about the vulnerabilities of even well-established cryptocurrency exchanges, as North Korean hackers continue to exploit loopholes in digital asset security.

The attack comes amid heightened regulatory scrutiny on cryptocurrency platforms due to the increasing use of digital assets for illicit financial activities.

The FBI has warned that North Korean-affiliated cybercriminals are evolving their tactics, leveraging sophisticated phishing campaigns, supply chain attacks, and social engineering techniques to infiltrate crypto platforms.

This latest heist underscores the urgent need for exchanges to reinforce security measures, implement multi-layered authentication protocols, and enhance transaction monitoring to detect suspicious activity.

Funding Pyongyang’s weapons

The TraderTraitor campaign is part of a broader strategy by the North Korean regime to bypass international sanctions and fund its military ambitions.

The United Nations has repeatedly warned that Pyongyang relies on cyber theft to finance its nuclear weapons and ballistic missile programs, with cryptocurrency heists becoming a crucial revenue stream.

North Korea’s cyber operations have escalated significantly in recent years.

The Lazarus Group, widely believed to be linked to Pyongyang’s intelligence agencies, has been behind some of the largest crypto-related heists, including the $625 million attack on Axie Infinity’s Ronin bridge in 2022 and the $100 million Harmony Horizon bridge hack.

These funds are funneled through complex laundering networks, often involving mixing services, over-the-counter brokers, and cooperation with overseas financial institutions.

The FBI has urged cryptocurrency firms, blockchain analysts, and financial institutions to remain vigilant and report suspicious transactions linked to TraderTraitor.

With North Korea’s hackers continuously adapting their methods, the agency has emphasized the need for international cooperation to track and seize illicit crypto funds before they can be converted into real-world assets.

Crackdown on crypto crime

The massive theft from ByBit is expected to fuel further regulatory pressure on the cryptocurrency sector.

Governments worldwide are ramping up efforts to introduce stricter compliance measures, enhance anti-money laundering (AML) frameworks, and enforce sanctions against individuals and entities associated with North Korean cyber activities.

The US Treasury has imposed multiple sanctions on cryptocurrency mixers and exchanges suspected of facilitating money laundering for state-backed hackers.

Meanwhile, countries in Europe and Asia are tightening monitoring mechanisms to prevent illicit crypto transactions from slipping through financial oversight systems.

As North Korea intensifies its crypto-related cybercrime efforts, the global financial community faces mounting challenges in combating digital asset theft and disrupting illicit networks.

The ongoing battle against state-sponsored hacking groups highlights the critical need for stronger security measures across blockchain platforms and a coordinated international response to mitigate the risks posed by rogue nations leveraging crypto to finance their regimes.

The post ByBit crypto theft: North Korea’s TraderTraitor hackers stole $1.5B, FBI says appeared first on Invezz

Disclaimer

The content, including but not limited to any articles, news, quotes, information, data, text, reports, ratings, opinions, images, photos, graphics, graphs, charts, animations, and video (Content) is a service of Kalkine Media LLC., having Delaware File No. 4697309 (“Kalkine Media, we or us”) and is available for personal and non-commercial use only. The principal purpose of the Content is to educate and inform. The Content does not contain or imply any recommendation or opinion intended to influence your financial decisions and must not be relied upon by you as such. Some of the Content on this website may be sponsored/non-sponsored, as applicable, but is NOT a solicitation or recommendation to buy, sell or hold the stocks of the company(s) or engage in any investment activity under discussion. Kalkine Media is neither licensed nor qualified to provide investment advice through this platform. Users should make their own enquiries about any investments and Kalkine Media strongly suggests the users to seek advice from a financial adviser, stockbroker or other professional (including taxation and legal advice), as necessary. Kalkine Media hereby disclaims any and all the liabilities to any user for any direct, indirect, implied, punitive, special, incidental or other consequential damages arising from any use of the Content on this website, which is provided without warranties. The views expressed in the Content by the guests, if any, are their own and do not necessarily represent the views or opinions of Kalkine Media.
The content published on Kalkine Media also includes feeds sourced from third-party providers. Kalkine does not assert any ownership rights over the content provided by these third-party sources. The inclusion of such feeds on the Website is for informational purposes only. Kalkine does not guarantee the accuracy, completeness, or reliability of the content obtained from third-party feeds. Furthermore, Kalkine Media shall not be held liable for any errors, omissions, or inaccuracies in the content obtained from third-party feeds, nor for any damages or losses arising from the use of such content. Some of the images/music that may be used on this website are copyrighted to their respective owner(s). Kalkine Media does not claim ownership of any of the pictures/music displayed/used on this website unless stated otherwise. The images/music that may be used on this website are taken from various sources on the internet, including paid subscriptions or are believed to be in public domain. We have used reasonable efforts to accredit the source (public domain/CC0 status) to where it was found and indicated it, as necessary.
This disclaimer is subject to change without notice. Users are advised to review this disclaimer periodically for any updates or modifications.