2024 marked a grim milestone for cryptocurrency platforms, with threat actors stealing $2.2 billion globally, according to Chainalysis. North Korean hackers accounted for a staggering 61% of these illicit funds, highlighting the persistent threat posed by state-sponsored cybercrime.

A Year of Escalating Crypto Heists

The year saw a 21% year-on-year increase in stolen funds, driven by a surge in individual incidents, which rose from 282 in 2023 to 303 in 2024. The first half of the year was particularly intense, with $1.58 billion stolen between January and July, an 84% increase compared to the same period in 2023.

However, the pace of attacks slowed in the latter half of the year, potentially due to geopolitical developments. The June summit between Vladimir Putin and Kim Jong-un reportedly led to the release of frozen North Korean assets and may have contributed to a 54% drop in stolen funds post-summit.

North Korea’s Evolving Tactics

Despite the slowdown, North Korean hackers have become more efficient and ambitious. Large-scale attacks yielding $50–$100 million or more occurred far more frequently in 2024 than in previous years. Smaller-scale hacks, valued at around $10,000, also proliferated, often linked to North Korean IT workers infiltrating crypto firms through fake identities and remote work schemes.

Strengthening Industry Defenses

To combat the rising threat, Chainalysis urged crypto companies to adopt stronger defenses. Key recommendations included rigorous employee vetting, improved private key management, and leveraging advanced tracing tools. Data-sharing initiatives and partnerships with law enforcement were also highlighted as essential for building resilience.

As global regulatory scrutiny intensifies, crypto firms must align with evolving industry standards to safeguard assets and maintain trust. By embracing advanced security practices and fostering collaboration, the industry can better protect itself against increasingly sophisticated cyber threats.

The crypto world faces mounting challenges, but with proactive measures, it can turn the tide against cybercriminals.