News | Top Stories
17 Mar 2025 8:01
NZCity News
NZCity CalculatorReturn to NZCity

  • Start Page
  • Personalise
  • News
  • Sport
  • Weather
  • Shopping
  • Jobs
  • Horoscopes
  • Lotto Results
  • Photo Gallery
  • Site Gallery
  • TVNow
  • Dating
  • SearchNZ
  • NZSearch
  • Crime.co.nz
  • RugbyLeague
  • Make Home
  • About NZCity
  • Contact NZCity
  • Your Privacy
  • Advertising
  • Login
  • Join for Free

  •   Home > News > International

    North Korean hackers behind biggest-ever cryptocurrency heist, FBI says

    A $US1.5 billion heist on leading cryptocurrency exchange Bybit is the work of North Korean state-sponsored hackers, according to the FBI.

    28 February 2025

    It is a thoroughly modern heist that puts history's biggest bank robbery in the shade.

    On the eve of the US-led invasion of Iraq in 2003, it took three trucks and a hand-written note from his dictator father for Qusay Hussein to make off with $US920 million-plus ($1.4 billion) in cash from the country's central bank.

    In 2025, the big steal was a cashless transaction.

    Instead of $US100 notes in boxes, the loot was a cryptocurrency called Ethereum.

    It was taken not from a bank vault but a digital "wallet" belonging to a Dubai-based crypto exchange called Bybit.

    It was valued at $US1.5 billion ($2.4 billion). 

    The alleged thieves were not even on the same continent. 

    They were in front of computer screens more than 6,000 kilometres away in the despotic hermit kingdom of Kim Jong Un. 

    Six days after the Bybit heist, the US Federal Bureau of Investigation said North Korea was responsible.

    The massive theft rocked perceptions of crypto as a cyber safe haven. 

    It also hammered home what a happy hunting ground the digital realm has become for 21st century criminals. 

    Cyber crooks armed with malicious software codes and stolen digital keys can make off with the kind of hauls that put shotgun-wielding bank robbers to shame. 

    "We've never seen anything on this scale before," Nick Carlsen, a former FBI intelligence analyst with expertise in North Korea, told CNN.

    "The ability of these illicit financial networks to absorb such huge amounts of money so quickly is deeply concerning."

    The FBI said it referred to "this specific North Korean malicious cyber activity as 'TraderTraitor'", involving state-sponsored hackers known as the Lazarus Group.

    The FBI has previously identified North Korean cyber actors as an "advanced persistent threat" since at least 2020.

    It says they target players in cryptocurrency and blockchain technology, from video gamers to trading companies and venture capital funds, and even individuals with big crypto holdings.

    They work by encouraging victims to download apps that allow them to secretly gain access to their computers and networks, a tactic known as "social engineering".

    Other North Korean hackers the "BeagleBoyz" have used similar tactics to steal from banks around the world, including $US81 million from the Bank of Bangladesh in 2016, according to the FBI.

    The FBI said the "TraderTraitor" actors had moved "rapidly" to launder their spoils from Bybit, converting the stolen money to Bitcoin and "other virtual assets dispersed across thousands of addresses on multiple blockchains".

    "It is expected these assets will be further laundered and eventually converted to fiat currency," it said.

    The news that Bybit had lost almost nine per cent of its total assets prompted a run on the world's second-largest cryptocurrency trading platform, with hundreds of thousands of customers seeking to withdraw funds.

    There's no publicly available data on how much Australians have invested via the platform.

    Million-dollar bounties for cyber sleuths

    Bybit chief executive Ben Zhou said the company would wear the losses out of its own pocket on behalf of its more than 60 million customers.

    The company released interim investigation reports from cybersecurity firms Sygnia and Verichains that suggested the cause of the attack was "malicious code" planted in a Bybit "cold wallet" — or offline digital storage system — on February 19 and activated two days later.

    The storage was provided by another company, SafeWallet, and "no indication of compromise was identified within Bybit's infrastructure", according to Sygnia.

    Verichains said on X that the attack was a "strong wake up call" that procedures like "private keys" for individual access to systems were "prone to exploitation and manipulation".

    Bybit also put up a bounty for cyber sleuths who could help trace the stolen money through public digital "wallets".

    It offered five per cent to people or companies who could get the money frozen.

    It set up a website that already shows several bounties awarded, including to the blockchain company Mantle, which has earned an estimated $US2million ($3.2 million).

    Mr Zhou said Bybit had "assigned a team to dedicate to maintain and update this website, we will not stop until Lazarus or bad actors in the industry is eliminated".

    Other observers predict the heist will undermine public trust in cryptocurrency.

    UK-based crypto fraud lawyer Louise Abbott told the BBC that "if such a hack can occur at this scale in the world's second-largest exchange, it can certainly happen again".


    ABC




    © 2025 ABC, NZCity


     Other International News
     16 Mar: United States launches air strikes on Yemen's rebel-occupied capital over Houthis' Red Sea attacks
     16 Mar: SpaceX Crew-10 mission docks with the International Space Station to relieve stranded astronauts
     16 Mar: Low-maintenance hydro plants are perfect for beginner gardeners
     16 Mar: Peruvian fisherman missing at sea for 95 days rescued and returned home to family
     16 Mar: US TV personality Wendy Williams says she's being denied her freedom
     16 Mar: Meta has given in to the global fight against fact-checking. What happens when truth becomes partisan?
     15 Mar: Iraq and Donald Trump announce killing of senior ISIS leader in attack by coalition forces
     Top Stories

    RUGBY RUGBY
    Macca Springer might have his work cut out for him at Crusaders training on Monday, despite scoring a record-equalling five tries in their Super Rugby win over the Force in Christchurch More...


    BUSINESS BUSINESS
    New Zealand's beef industry is confident of its necessity in the United States, despite the likelihood of tariffs from the Trump administration More...



     Today's News

    Law and Order:
    Day three of jury deliberations, in the trial of a Dunedin teen accused of murdering another boy at the city's bus hub 7:47

    Cricket:
    An acknowledgement of Kyle Jamieson's bowling in the Black Caps' nine-wicket win over Pakistan to open their five-match T20 cricket series in Christchurch 7:37

    Law and Order:
    A woman's been convicted of defrauding a Porirua trust that helps needy children, to the tune of one million dollars 7:37

    Soccer:
    Liam Lawson has succumbed in his first full race with Red Bull as wet conditions wrought havoc on Formula One's Australian Grand Prix 7:27

    Law and Order:
    Three men are due in court today charged with murder in relation to three separate deaths across the upper North Island on Saturday 7:17

    Auckland:
    A police watchdog has been alerted after a person was killed while a driver was allegedly fleeing police in Auckland 4:37

    International:
    United States launches air strikes on Yemen's rebel-occupied capital over Houthis' Red Sea attacks 22:27

    Environment:
    MetService is warning of heavy rain and severe northwest gales for parts of southern and central New Zealand tomorrow and Tuesday 21:57

    Law and Order:
    Police are trying to find a group of people they say assaulted a worker and took items from premises in Auckland's New Lynn 21:17

    International:
    SpaceX Crew-10 mission docks with the International Space Station to relieve stranded astronauts 19:47


     News Search






    Power Search


    © 2025 New Zealand City Ltd