US seeks to recover $2.67M from North Korean hackers

The United States government has filed two legal complaints to seize over $2.67 million in digital assets stolen by the North Korean Lazarus hacking group.

The filings, submitted on October 4, 2024, aim to recover approximately $1.7 million in Tether (CRYPTO:USDT) linked to the 2022 Deribit hack, which drained $28 million from the options exchange.

According to the filings, the hackers used the Tornado Cash (CRYPTO:TORN) mixer and various Ethereum addresses to launder the stolen funds.

Additionally, the government seeks to seize around $970,000 in Avalanche-bridged Bitcoin (CRYPTO:BTC.B) stolen during the 2023 hack of Stake.com, a gambling platform.

This attack resulted in losses exceeding $41 million.

The Lazarus Group, widely believed to be behind many cryptocurrency hacks, continues to be a significant threat.

In July 2024, the group was suspected of being responsible for a major breach of the WazirX exchange, which saw $235 million siphoned from the platform.

Onchain investigator ZackXBT further revealed in August 2024 that North Korean developers had infiltrated at least 25 crypto projects, using fake identities to compromise code and steal assets.

In response, the Federal Bureau of Investigation (FBI) has issued warnings to the public.

The FBI highlighted that the Lazarus Group has been using social engineering tactics, such as sending out fake job offers and applications.

Once a victim is lured into downloading malware disguised as employment documentation, their personal data or assets are at risk of being stolen.

The Deribit and Stake.com hacks are just part of a broader pattern of attacks attributed to the Lazarus Group.

The ongoing efforts to recover these assets reflect the US government's commitment to disrupting the group's operations and recovering stolen funds.

According to official reports, these actions are part of broader global cybersecurity efforts aimed at combating malicious cyber activities linked to North Korea.