Bankless

Why North Korea Is Winning Crypto Crime and How to Fight Back | Ari Redbord, TRM Labs

1h 31min

This episode of Bankless features Ari Redbord from TRM Labs, who explains how North Korea has professionalized crypto hacking and laundering, stealing an average of $1 billion per year to fund weapons proliferation. The conversation covers the unprecedented social engineering tactics used in recent hacks like the $285 million Drift protocol attack, the challenges of tracing and seizing illicit funds, and potential solutions including offensive cyber operations and public-private partnerships like the Beacon Network.

Summarized by Podsumo

🎙️ Ask about this episode

✨ Key Takeaways

1

North Korea's hacking groups, acting as state actors, stole $6 billion in crypto over the past five years, with the Drift hack ($285M in 12 minutes) and Bybit hack ($1.5B) being prime examples of their evolving sophistication.
2

Lazarus Group uses social engineering at scale, including sending Western proxies to conferences to build trust with DeFi developers before compromising private keys—a tactic described as 'unprecedented' in crypto crime.
3

The Beacon Network, a coalition of 85% of centralized exchanges and 70 law enforcement agencies, enables real-time blocking of illicit funds, demonstrating a tech-driven approach to perimeter defense.
4

Ari Redbord advocates for 'cyber letters of marque'—commissioning private-sector bounty hunters to recover stolen crypto, analogous to historical privateers fighting pirates.
5

Privacy and security can coexist through technologies like zero-knowledge proofs, which allow transaction validation without revealing user identity—crucial for preventing North Korea from exploiting privacy tools like Tornado Cash.

💬 Notable Quotes

"“These are state actors hard-stop. When I talk about the enemies of the United States and our allies, I think about China and Russia and Iran. And I put North Korea in there as well, which is crazy, right? This is a country with absolutely no economy whatsoever. And yet they’re competing on the global stage because they’ve professionalized cyber crime.” — Ari Redbord"
"“We need to stop blaming the victims here. Essentially, North Korea is attacking these projects at scale. We need to attack North Korea. If North Korea steals $285 million from Drift, we need to go steal it back.” — Ari Redbord"
"“Pirates today are on blockchains and in cyberspace. Let us with the tools and the training and the expertise go after those guys where they live.” — Ari Redbord"