Alexander Savenkov A recent report from Chainalysis has shed light on a concerning trend in the world of cybercrime. It appears that hacking groups with ties to North Korea are increasingly turning to Russian cryptocurrency exchanges as a means to launder their ill-gotten digital assets. This strategic shift, as revealed by the blockchain forensics company, has emerged alongside a decline in the value of stolen cryptocurrencies this year, in contrast to the record-breaking figures of 2022.
Emergence of a New Alliance: North Korean and Russian Cybercriminals
Chainalysis, a leading provider of crypto analytics, has scrutinized onchain data to unveil a worrisome development. It suggests that hackers affiliated with the Democratic People’s Republic of Korea (DPRK) are showing a growing preference for cryptocurrency exchanges based in the Russian Federation to legitimize their unlawfully acquired digital funds.
This report coincides with a high-level summit between the leaders of these two sanctioned nations, Kim Jong-un and Vladimir Putin, raising suspicions of potential discussions regarding arms deals. Concurrently, United Nations sanctions monitors are closely monitoring Pyongyang’s evolving tactics in cyberattacks aimed at crypto and financial exchanges, with the aim of funding its nuclear weapons and missile programs.
Chainalysis underscores this shift with a concrete example: a recent transfer of approximately $21.9 million in stolen cryptocurrency from Harmony Protocol to a Russian exchange known for facilitating illicit transactions. The company has also presented evidence demonstrating that North Korean entities have been employing this platform and other Russian-based services for money laundering purposes over the past few years. This development underscores a significant escalation in the collaboration between the cybercriminal networks of these two nations.
The report’s authors further highlight a crucial distinction: while mainstream centralized exchanges typically cooperate with international efforts, Russian cryptocurrency exchanges and law enforcement agencies have a history of non-compliance. This significantly diminishes the chances of recovering stolen assets.
Chainalysis data reveals that the value of stolen cryptocurrency associated with North Korean hacking groups has exceeded $340.4 million thus far in 2023, a notable drop from the staggering $1.65 billion reported in the previous year. However, it’s worth noting that the figures for 2022 were exceptionally high.
In their conclusion, Chainalysis emphasizes, “With the total amount of cryptocurrency stolen estimated at $3.54 billion, DPRK continues to be an incubator for hacking activities and remains one of the largest active threats in the cybercrime landscape.” According to their estimates, while the share of DPRK-linked groups in cryptocurrency theft has decreased, they still account for 29.7% of cryptocurrency stolen through hacks in 2023.
The question that arises is whether Russian and North Korean cybercriminal actors are collaborating in the laundering of cryptocurrency stolen by DPRK-affiliated hackers. Share your thoughts in the comments section below.
Table Of Contents
Frequently Asked Questions (FAQs) about Cryptocurrency laundering
What does the Chainalysis report reveal about North Korean hackers and Russian exchanges?
The Chainalysis report reveals that hacking groups linked to North Korea are increasingly using cryptocurrency exchanges based in Russia to launder stolen digital assets. This shift in strategy coincides with a decrease in the value of stolen cryptocurrency in 2023 compared to the exceptionally high figures seen in 2022.
Are there any notable examples mentioned in the report regarding this trend?
Yes, the report provides a specific example of a recent transfer of approximately $21.9 million in stolen cryptocurrency from Harmony Protocol to a Russian exchange known for processing illicit transactions. This illustrates how North Korean hackers are actively using Russian exchanges for their money laundering activities.
Why is this trend concerning?
This trend is concerning because Russian cryptocurrency exchanges and law enforcement agencies have a track record of non-compliance with international efforts, making it challenging to recover stolen assets. Additionally, the use of these exchanges by North Korean hackers signifies an escalation in the partnership between the cybercriminal networks of these two nations.
How much cryptocurrency has been stolen by North Korean hackers in 2023, according to the report?
According to Chainalysis data, the value of stolen cryptocurrency associated with North Korean hacking groups has exceeded $340.4 million in 2023. While this is a significant amount, it represents a decrease from the $1.65 billion reported for the previous year, 2022.
What is the overall assessment of North Korea’s role in cybercrime according to Chainalysis?
Chainalysis concludes that North Korea remains a prominent hub for hacking activities and is one of the largest active threats in the cybercrime landscape. Even though the share of cryptocurrency theft attributed to DPRK-linked groups has decreased, they still account for 29.7% of cryptocurrency stolen through hacks in 2023.
More about Cryptocurrency laundering
- Chainalysis Report
- Harmony Protocol
- Cybersecurity Threats
- Cryptocurrency Laundering
- North Korean Hackers
- Russian Cryptocurrency Exchanges
5 comments
Russia-NK alliance, trouble brewing in crypto world.
Those exchanges in Russia, no cooper8 – vry bad 4 recovery.
Less stolen crypto, gud news, but still big prob.
DPRK cyber gangs, they stay dangerous, even with less heists.
$340.4M stolen, dat’s huge, we all gotta stay vigilant.