The U.S. Department of Justice has charged four North Korean citizens with cybercrimes involving cryptocurrency theft. The hackers impersonated professionals to access and siphon funds from startups.
A Sophisticated Cyber Heist
The charges against Kim Kwang Jin, Kang Tae Bok, Jong Pong Ju, and Chang Nam Il began in 2019, when they used stolen identities to get jobs at crypto firms in Atlanta and Serbia. They submitted legitimate ID numbers with altered photos, gaining access to internal systems.
Tornado Cash and Fake IDs
To cover their tracks, the hackers utilized the crypto mixer Tornado Cash to launder stolen funds. The assets were then transferred to wallets owned by Kang and Chang, who opened exchange accounts under fake Malaysian identities.
The “Laptop Farm” Operation
Authorities revealed that this crime was part of a larger operation known as *DPRK RevGen: Domestic Enabler Initiative*. A network of ‘laptop farms’ operating across 16 U.S. states allowed North Korean actors to remotely control laptops located in American residences.
This incident highlights North Korea's aggressive approach to cybercrime and the urgent need for enhanced identity verification in the crypto ecosystem.
