• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Investigation Reveals: 21 North Korean Crypto Developers Make $500K Monthly

user avatar

by Giorgi Kostiuk

2 years ago


  1. Detected Developer Network
  2. Theft of $1.3 Million and Money Laundering
  3. Connection to Sanctioned Individuals and Organizations

  4. Blockchain investigator ZachXBT has uncovered a network of North Korean developers working on various crypto projects and earning up to $500,000 per month.

    Detected Developer Network

    In a post on the social network X, dated August 15, ZachXBT informed his followers that an organization in Asia, likely operating out of North Korea, is receiving $300,000 to $500,000 per month employing at least 21 developers for over 25 crypto projects. To support this claim, the investigator published a screenshot with examples of identified transactions.

    Recently a team reached out to me for assistance after $1.3M was stolen from the treasury after malicious code had been pushed.

    Theft of $1.3 Million and Money Laundering

    ZachXBT alleges this latest $1.3 million stolen by North Korean workers was laundered through a sequence of transactions, including transferring to a theft address and ending with 16.5 Ether (ETH) going to two different exchanges. Further investigation revealed that these developers are part of a much more extensive network.

    Connection to Sanctioned Individuals and Organizations

    ZachXBT discovered that the payment addresses are linked to Sim Hyon Sop, who was sanctioned by the Office of Foreign Assets Control (OFAC) for coordinating financial transfers that ultimately supported North Korean weapons programs. Additionally, the investigator found addresses connected to another sanctioned individual, Sang Man Kim, involved in North Korean-related cybercrime. Some developers even inadvertently revealed their other identities in notes.

    An anonymous group of developers with Russian telecom IP addresses claimed to be based in the USA and Malaysia. At least one of them accidentally leaked their other identities on a notepad.

    The investigation revealed that organizations linked to North Korea are involved in cyberattacks and other fraudulent schemes to generate income, which is then sent back to the country. Many of these workers were hired through recruitment agencies and referred each other. The US Departments of Justice, State, and Treasury have previously warned about the influx of North Korean workers into the crypto and IT industries, working remotely for various projects.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

US Government Transfers $288 Million in Seized Crypto to Coinbase Prime

chest

The US government transferred $288 million in seized Bitcoin and Ethereum to Coinbase Prime, raising market speculation about a potential selloff.

user avatarSon Min-ho

Coinbase Enhances User Experience with Smart Wallet Verification Upgrade

chest

Coinbase has launched a Smart Wallet verification upgrade aimed at simplifying multichain dApp access for users.

user avatarAyman Ben Youssef

Ethereum's Future Depends on Institutional Interest and Market Signals

chest

The future of Ethereum hinges on institutional interest and market signals as traders await proof of sustained demand.

user avatarTando Nkube

Ethereum Market Dynamics Amid ETF Launch Speculation

chest

Ethereum's market is showing signs of caution as traders become more selective ahead of potential ETF launches.

user avatarKofi Adjeman

Market Signals and Bitcoin's Recovery

chest

Bitcoin's recovery is supported by ETF inflows and a calmer derivatives market, but requires confirmation from spot demand.

user avatarNguyen Van Long

Kraken Expands Support for Arbitrum-based Stablecoins

chest

Kraken's recent update to support Arbitrum-based stablecoins marks a significant shift in the exchange's approach to Layer 2 networks, allowing for more efficient transactions and addressing high fees on Mainnet Ethereum.

user avatarSatoshi Nakamura

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.