Don't make Kim Jong-un unhappy! North Korea criticizes the U.S. for manipulating narratives, claiming there are no "North Korean hackers" at all.

North Korea denies involvement in cryptocurrency hacking attacks and accuses the United States of politicizing cybersecurity. Highlighting the escalating confrontation between geopolitics and the crypto industry.

North Korea fully denies hacker allegations, criticizes U.S. manipulation of “cyber threat narratives”

Recently, North Korea responded strongly through its official media, the Korean Central News Agency, to accusations of involvement in cryptocurrency hacking, calling the claims “absurd slander,” and criticizing the U.S. for politicizing cybersecurity issues.

Image source: “Korean Central News Agency” North Korea responds strongly to allegations of involvement in cryptocurrency hacking, calling the claims “absurd slander,” and criticizing the U.S. for politicizing cybersecurity issues.

North Korea’s Foreign Ministry spokesperson stated through the official news agency that U.S. government agencies and media are deliberately shaping a “non-existent North Korean cyber threat,” attempting to mislead the international community about its national image.

The spokesperson further pointed out that the U.S. has long controlled global information technology infrastructure but claims to be a victim in return. This reasoning is “illogical and self-contradictory.” North Korea emphasizes that Washington attributes all cyber fraud and crypto crimes worldwide to Pyongyang, which is actually aimed at pushing hostile policies against North Korea and justifying international sanctions.

On-chain data reveals an opposite trend, with North Korea-linked hackers steadily increasing their share

Despite official denials, multiple blockchain investigation reports show very different conclusions. Blockchain intelligence firm TRM Labs states that as of April 2026, about 76% of global cryptocurrency theft losses are related to North Korean groups, amounting to approximately $577 million.

• Related news: North Korean hackers become the biggest nightmare in the crypto world! Stole $577 million in the first four months of this year, accounting for 76% of global losses

Two major incidents: the KelpDAO attack of about $290 million and the Drift Protocol vulnerability of about $285 million are believed to involve different hacker subgroups, indicating increasingly specialized and divided operational structures.

Further reading
Kelp DAO re-staking protocol hacked! Lost $290 million in one hour, understand the event’s details
DeFi platform Drift hacked on April Fools’ Day! Hackers drained $270 million, admin keys exploited

Long-term data also shows that North Korea’s share in global crypto hacking activities has grown rapidly from less than 10% in 2020 and 2021 to about 64% in 2025. Since 2017, related hacking operations have stolen over $6 billion in digital assets.

Infiltrating Web3 industry and laundering money, becoming key sources of funding

In addition to direct hacking, research organizations have also found that North Korean personnel infiltrate the industry through more covert means. Supported by the Ethereum Foundation, Ketman Project reports that about 100 suspected North Korean IT personnel have infiltrated 53 crypto projects by forging identities and using AI-generated resumes to conduct internal operations or gather intelligence.

These actions often combine with underground money laundering networks, converting stolen funds into liquid assets. The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) sanctioned six individuals and two entities in March this year, accusing them of facilitating money laundering through IT outsourcing and crypto transactions. By 2024, related activities are estimated to reach nearly $800 million.

A UN report also indicates that these funds may ultimately flow toward North Korea’s nuclear and missile programs, serving as an important source of income under international sanctions.

Geopolitical tensions intertwine with the crypto industry, making cyber warfare a new front of conflict

As international pressure continues, North Korea’s stance has also hardened, emphasizing that it will take “all necessary measures” to defend national interests and opposes any interference in internal affairs through cyber issues. This has elevated cybersecurity from a technical and criminal issue to a component of geopolitical confrontation.

Experts observe that with hacking groups like Lazarus Group remaining active, the crypto asset market has become a new battleground for state-level competition. From DeFi attacks to cross-chain bridge vulnerabilities and corporate infiltrations, attack methods are constantly evolving.

This controversy also highlights a deeper issue: under the rapid development of decentralized finance, international regulation and law enforcement mechanisms remain insufficient. When hacker activities are closely intertwined with national interests, the crypto world is gradually becoming an extension of real-world political conflicts.

This article is compiled by Crypto Agent from various sources, reviewed and edited by “Crypto City.” It is still in training, and may contain logical biases or informational errors. Content is for reference only; do not consider it investment advice.