Apr 15, 2022 12:01:00

It turns out that a North Korean cybercrime group was involved in the '75 billion yen theft from NFT games'

In March 2022, '

Axie Infinity ,' which was advertised as a 'game that can be earned just by playing,' was hacked and the funds of over 75 billion yen were stolen . Investigations into the incident revealed that North Korean cybercriminal groups ' Lazarus Group ' and ' APT38 ' were involved in the theft.

FBI Statement on Attribution of Malicious Cyber Activity Posed by the Democratic People's Republic of Korea — FBI
https://www.fbi.gov/news/pressrel/press-releases/fbi-statement-on-attribution-of-malicious-cyber-activity-posed-by-the-democratic-peoples-republic-of-korea

Axie Infinity is a game run by Vietnam-based game company 'Sky Mavis' and features non-fungible tokens (NFT) just by playing. However, on March 23, 2022, the side chain 'Ronin Bridge' used in Axie Infinity was damaged by hacking, and the virtual currency equivalent to more than 75 billion yen was stolen.

Over 75 billion yen is stolen from the side chain of the game 'Axie Infinity' where you can get virtual currency just by playing --GIGAZINE

The Federal Bureau of Investigation (FBI), which was investigating the above case, said, 'The $ 620 million theft case reported on March 29, 2022 (the above case) was the North Korean cybercrime group Lazarus. It turns out that it was caused by 'Group' and 'APT38'. '

#FBI Statement on Attribution of Malicious #Cyber Activity Posed by the Democratic People's Republic of Korea https://t.co/emvecZqRhl pic.twitter.com/ayPSySkNCU

— FBI (@FBI) April 14, 2022

In addition, the wallet address used by the Lazarus Group to move cryptocurrencies has also been reported . Checking the transaction history of the actually reported wallet address '0x098B716B8Aaf21512996dC57EB0615e2383E2f96', on March 23, 2022, when Axie Infinity was stolen, the amount of Ethereum that matches the stolen Ethereum (173,600 ETH) was traded. You can see that it has been done.

In addition, it is reported that Lazarus Group was involved in the development of the ransomware ' WannaCry ' that raged all over the world, and APT38 also illegally withdrew tens of billions of yen of cash from banks all over the world. Is known. In this announcement, the FBI said, 'North Korea's cybercrime group is funding North Korea through fraudulent acts such as stealing cryptocurrencies. We are working with the Ministry of Taxation and government partners to eradicate cybercrime. We will continue to work on it. '