North Korea-linked cybercriminals have taken more than $2 billion in cryptocurrency so far in 2025, setting a new annual record and pushing the total known theft by the regime to over $6 billion since 2017, according to blockchain forensics firm Elliptic.
The majority of the losses came from February’s $1.46 billion breach of Bybit, one of the largest crypto thefts on record, while attacks on LND.fi, WOO X, Seedify, and over 30 smaller platforms also contributed to the total.
While large exchanges remain a prime target, Elliptic reports a notable shift toward high-net-worth individuals, company executives, and smaller platforms.
The firm said,
“The weak point in cryptocurrency security is now human, not technological.”
Hackers increasingly rely on social engineering tactics—phishing, fake job offers, and compromised social media accounts—to access wallets and private keys, rather than exploiting technical vulnerabilities.
The highest reported theft from a single individual this year is $100 million.
Elliptic’s analysis shows that North Korean groups are using increasingly complex laundering methods to obscure stolen funds.
After the Bybit hack, investigators traced multiple rounds of cross-chain swaps involving Bitcoin, Ethereum, BTTC, and Tron, often using obscure protocols and self-issued tokens.
Techniques now include multiple mixing rounds, transfers across lesser-known blockchains, and creating new tokens issued by laundering networks to make tracking more difficult.
According to United Nations estimates, the regime’s cyber theft accounts for around 13% of North Korea’s GDP.
Western security agencies and the UN suggest the proceeds fund the country’s nuclear weapons and ballistic missile programmes.
Dr Tom Robinson, chief scientist at Elliptic, warned that the true scale of North Korean cybercrime is likely higher than reported:
“Other thefts are likely unreported and remain unknown as attributing cyber thefts to North Korea is not an exact science.”
This year has seen a mix of high-profile breaches and smaller, targeted thefts.
July’s WOO X attack resulted in $14 million stolen from just nine users, while Seedify saw $1.2 million taken.
Elliptic has also worked privately with victims of attacks costing tens or even hundreds of millions.
Compared with 2024, when North Korean hackers stole $659 million in crypto, 2025 has been exceptional, nearly tripling last year’s total and surpassing the previous record of $1.35 billion set in 2022.
The move toward social engineering reflects a strategic evolution.
With crypto prices recovering, wealthy individuals now present lucrative targets, often without the security measures of institutional platforms.
Elliptic said,
“Now, the weakness of cryptocurrency security is humans, not technology.”
Researchers note that the regime also runs fake IT worker programmes to generate additional income and bypass sanctions, blending cybercrime with sophisticated fraud operations.
Despite the growing scale of thefts, blockchain’s transparency enables analysts to follow stolen assets.
Elliptic and other firms like Chainalysis track transactions in real time, helping freeze funds on exchanges and limit hackers’ ability to cash out.
Yet the combination of complex laundering methods and targeting of individuals makes complete prevention challenging.
The Bybit incident alone accounted for nearly three-quarters of 2025’s total theft, but analysts point to over 30 other incidents, including attacks on LND.fi, WOO X, and Seedify, as evidence of a sustained and expanding campaign.
Experts warn that as North Korea increasingly targets individuals and diversifies laundering techniques, the reported $2 billion figure may still underestimate the true scale of the regime’s crypto theft operations.
KuCoin has pleaded guilty to running an unlicensed money-transmitting business in the U.S. and will pay nearly $300 million in fines and forfeitures. As part of the settlement, co-founders Chun Gan and Ke Tang have stepped down, while the exchange works to rebuild under stricter global regulatory oversight.
AnaisTribe.Run, a Solana-based Social-Fi platform, has seen rapid growth, with user numbers rising from 1,400 in December 2024 to over 3,000 by January 2025. The platform offers unique creator-focused features, including the ability for creators to buy their own tokens before launch, and has benefited from a year of research, including feedback from former FriendTech users.
AnaisBitcoin struggles, dropping to the $95k range as Trump's tariffs on Canada, Mexico, and China fuel market uncertainty. While he admits the US may feel “some pain,” he insists the benefits justify the cost. Could Bitcoin endure prolonged pressure under his policies?
CatherineSam Bankman-Fried is appealing his fraud conviction, citing judicial bias and suppressed evidence. His defense claims FTX customers saw no losses due to profitable investments like Anthropic and challenges the $11 billion repayment order, arguing he has forfeited all assets. Is this damage control or a valid appeal?
KikyoDeepSeek, a Chinese AI app, became the most downloaded app in the US, surpassing ChatGPT, but raised concerns over privacy and national security. Several countries, including the US, Italy, and Taiwan, swiftly banned the app due to fears of sensitive data being exposed to Chinese authorities.
AnaisMore US parents are shifting from traditional 529 college savings plans to Bitcoin, viewing it as a hedge against inflation and a long-term investment, despite its volatility. However, this raises concerns about missing out on the tax benefits offered by 529 plans. Could Bitcoin's appeal outweigh the advantages of conventional savings strategies?
CatherineAuthorities seized luxury items, including Louis Vuitton goods and a Mercedes Benz AMG A45, purchased with the proceeds of Ho Kai Xin's crimes, underscoring her misuse of stolen funds.
KikyoTrump Media launched Truth.Fi, a new platform focused on investing in cryptocurrencies and traditional assets. The platform is backed by a partnership with Charles Schwab for asset custody services.
WeatherlySoftBank and OpenAI formed a joint venture, SB OpenAI Japan, to bring AI services to Japanese businesses, with SoftBank committing $3 billion annually. SoftBank is also investing up to $25 billion in OpenAI and is involved in the $100 billion Stargate AI infrastructure project in the U.S.
Anais“I LOVE $TRUMP,” the US President posted, endorsing his Solana meme coin. Instead of a rally, the token plunged further, drawing criticism over his promotion.
Catherine