News | Top Stories
17 Mar 2025 9:12
NZCity News
NZCity CalculatorReturn to NZCity

  • Start Page
  • Personalise
  • News
  • Sport
  • Weather
  • Shopping
  • Jobs
  • Horoscopes
  • Lotto Results
  • Photo Gallery
  • Site Gallery
  • TVNow
  • Dating
  • SearchNZ
  • NZSearch
  • Crime.co.nz
  • RugbyLeague
  • Make Home
  • About NZCity
  • Contact NZCity
  • Your Privacy
  • Advertising
  • Login
  • Join for Free

  •   Home > News > International

    North Korean hackers behind biggest-ever cryptocurrency heist, FBI says

    A $US1.5 billion heist on leading cryptocurrency exchange Bybit is the work of North Korean state-sponsored hackers, according to the FBI.

    28 February 2025

    It is a thoroughly modern heist that puts history's biggest bank robbery in the shade.

    On the eve of the US-led invasion of Iraq in 2003, it took three trucks and a hand-written note from his dictator father for Qusay Hussein to make off with $US920 million-plus ($1.4 billion) in cash from the country's central bank.

    In 2025, the big steal was a cashless transaction.

    Instead of $US100 notes in boxes, the loot was a cryptocurrency called Ethereum.

    It was taken not from a bank vault but a digital "wallet" belonging to a Dubai-based crypto exchange called Bybit.

    It was valued at $US1.5 billion ($2.4 billion). 

    The alleged thieves were not even on the same continent. 

    They were in front of computer screens more than 6,000 kilometres away in the despotic hermit kingdom of Kim Jong Un. 

    Six days after the Bybit heist, the US Federal Bureau of Investigation said North Korea was responsible.

    The massive theft rocked perceptions of crypto as a cyber safe haven. 

    It also hammered home what a happy hunting ground the digital realm has become for 21st century criminals. 

    Cyber crooks armed with malicious software codes and stolen digital keys can make off with the kind of hauls that put shotgun-wielding bank robbers to shame. 

    "We've never seen anything on this scale before," Nick Carlsen, a former FBI intelligence analyst with expertise in North Korea, told CNN.

    "The ability of these illicit financial networks to absorb such huge amounts of money so quickly is deeply concerning."

    The FBI said it referred to "this specific North Korean malicious cyber activity as 'TraderTraitor'", involving state-sponsored hackers known as the Lazarus Group.

    The FBI has previously identified North Korean cyber actors as an "advanced persistent threat" since at least 2020.

    It says they target players in cryptocurrency and blockchain technology, from video gamers to trading companies and venture capital funds, and even individuals with big crypto holdings.

    They work by encouraging victims to download apps that allow them to secretly gain access to their computers and networks, a tactic known as "social engineering".

    Other North Korean hackers the "BeagleBoyz" have used similar tactics to steal from banks around the world, including $US81 million from the Bank of Bangladesh in 2016, according to the FBI.

    The FBI said the "TraderTraitor" actors had moved "rapidly" to launder their spoils from Bybit, converting the stolen money to Bitcoin and "other virtual assets dispersed across thousands of addresses on multiple blockchains".

    "It is expected these assets will be further laundered and eventually converted to fiat currency," it said.

    The news that Bybit had lost almost nine per cent of its total assets prompted a run on the world's second-largest cryptocurrency trading platform, with hundreds of thousands of customers seeking to withdraw funds.

    There's no publicly available data on how much Australians have invested via the platform.

    Million-dollar bounties for cyber sleuths

    Bybit chief executive Ben Zhou said the company would wear the losses out of its own pocket on behalf of its more than 60 million customers.

    The company released interim investigation reports from cybersecurity firms Sygnia and Verichains that suggested the cause of the attack was "malicious code" planted in a Bybit "cold wallet" — or offline digital storage system — on February 19 and activated two days later.

    The storage was provided by another company, SafeWallet, and "no indication of compromise was identified within Bybit's infrastructure", according to Sygnia.

    Verichains said on X that the attack was a "strong wake up call" that procedures like "private keys" for individual access to systems were "prone to exploitation and manipulation".

    Bybit also put up a bounty for cyber sleuths who could help trace the stolen money through public digital "wallets".

    It offered five per cent to people or companies who could get the money frozen.

    It set up a website that already shows several bounties awarded, including to the blockchain company Mantle, which has earned an estimated $US2million ($3.2 million).

    Mr Zhou said Bybit had "assigned a team to dedicate to maintain and update this website, we will not stop until Lazarus or bad actors in the industry is eliminated".

    Other observers predict the heist will undermine public trust in cryptocurrency.

    UK-based crypto fraud lawyer Louise Abbott told the BBC that "if such a hack can occur at this scale in the world's second-largest exchange, it can certainly happen again".


    ABC




    © 2025 ABC, NZCity


     Other International News
     17 Mar: IVF alternatives, how much they cost, and if they're right for you
     17 Mar: Europe doesn't know if it can rely on America's nuclear weapons for protection. Some countries are looking elsewhere
     16 Mar: United States launches air strikes on Yemen's rebel-occupied capital over Houthis' Red Sea attacks
     16 Mar: SpaceX Crew-10 mission docks with the International Space Station to relieve stranded astronauts
     16 Mar: Low-maintenance hydro plants are perfect for beginner gardeners
     16 Mar: Peruvian fisherman missing at sea for 95 days rescued and returned home to family
     16 Mar: US TV personality Wendy Williams says she's being denied her freedom
     Top Stories

    RUGBY RUGBY
    Macca Springer might have his work cut out for him at Crusaders training on Monday, despite scoring a record-equalling five tries in their Super Rugby win over the Force in Christchurch More...


    BUSINESS BUSINESS
    Hope New Zealand's aquaculture sector could soon be a three-billion dollar industry More...



     Today's News

    National:
    Two charts that explain why Reform isn’t being dented by its scandals 8:27

    Business:
    Hope New Zealand's aquaculture sector could soon be a three-billion dollar industry 8:17

    National:
    The psychology behind anti-trans legislation: How cognitive biases shape thoughts and policy 8:17

    Soccer:
    Liam Lawson has succumbed in his first full race with Red Bull as wet conditions wrought havoc on Formula One's Australian Grand Prix 8:07

    National:
    See you in the funny papers: How superhero comics tell the story of Jewish America 8:07

    International:
    IVF alternatives, how much they cost, and if they're right for you 8:07

    Soccer:
    Golfer Ryan Fox has closed with a two-under par final round 70 at The Players Championship at Sawgrass 8:07

    International:
    Europe doesn't know if it can rely on America's nuclear weapons for protection. Some countries are looking elsewhere 7:57

    Politics:
    Health and safety advocates want more consistent regulations across the extractive sector 7:57

    Law and Order:
    Day three of jury deliberations, in the trial of a Dunedin teen accused of murdering another boy at the city's bus hub 7:47


     News Search






    Power Search


    © 2025 New Zealand City Ltd