U.S. Seizes US$500,000 Worth Of Bitcoin From Suspected North Korean Hackers

Share post:

The U.S. Department of Justice has seized US$500,000 worth of Bitcoin from suspected North Korean hackers.

According to Deputy Attorney General Lisa O. Monaco, the successful recovery of funds was made possible thanks to a swift report to the FBI from an unnamed Kansas hospital.

Court documents say the Kansas hospital was unable to access its IT systems for a week after hackers used the ransomware strain called Maul to encrypt its files and servers.

Although the hospital paid US$100,000 in Bitcoin to recover its systems, the incident and payment was reported to the FBI. The FBI was able to identify the ransomware linked to North Korea and trace the cryptocurrency to China-based money launderers.

In addition to the US$100,000 recovered, another US$120,000 Bitcoin payment was made to the criminal cryptocurrency accounts, and the FBI identified the second victim as another Colorado medical provider.

Although the process of seizing and retrieving funds remain unknown, the FBI said it had returned the money to the two healthcare providers. Details of the remaining funds remain unknown.

Deputy Attorney General Monaco commended the hospital for reporting the incident.

“Not only did this allow us to recover their ransom payment as well as a ransom paid by previously unknown victims, but we were also able to identify a previously unidentified ransomware strain,” she said.

The sources for this piece include an article in BBC.

Featured Tech Jobs


Related articles

Leaked documents may show the inside of China’s hacking strategy

Documents apparently stolen by disgruntled employees to embarrass their firm may give insight into China's cyber

Abuse of valid accounts by threat actors hits a high, says IBM

Attackers are finding that obtaining valid credentials is an easier route to achieving their goals, s

Cyber Security Today, Feb. 21, 2024 – A patch warning from ConnectWise, the latest ransomware news, and more

This episode reports on a report comparing business email compromise attacks against ransomware

UK leads takedown of LockBit ransomware gang’s website

The LockBit ransomware gang’s website has been seized, several news agencies reported late Monday. The Reuters news agency and The Register are carrying stories based on a new splash screen that has appeared on the gang’s website. It says, “This site is now under the control of the National Crime Agency of the UK, working

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways