Hackers have stole $2.1 billion at Crypto, a record high in the first half of 2025, with North Korea-sponsored actors accounting for 70% of the loss, according to a report from blockchain intelligence provider TRM Labs.
According to “H1 2025 Crypto Hacks and Exploits: A New Record in Evolving Threats,” the total amount is 10% more than the previous high set in 2022, with North Korean groups reportedly falling behind $1.6 billion in stolen codes.
TRM said North Korea has cemented its position as “the most prolific nation-state threat actor in the crypto space.”
TRM Labs analysis shows that #Crypto hackers stole over 2.1B on H1 2025. About 70% came from a 1.5B Bibit Hack due to North Korea.
Read the full breakdown https://t.co/9iqg6qu5xq pic.twitter.com/sxpida17lr
– June 27, 2025, TRM Labs (@trmlabs)
“Theft serves as an important tool for national technology,” the report added.
The huge amount of swiped funds for the first half of this year was driven by around $1.5 billion. Theft in February of Ethereum Ethereum-related assets from Crypto Exchange Bybit are the biggest hacks in the history of the crypto industry.
Multi-signature wallet provider Safe said the robbery came from the developer laptop where it was breached. The investigation revealed that high-level, secure developer workstations were compromised on February 4th when interacting with a malicious Docker project or lightweight application.
Authorities have denounced North Korean hackers for misuse of the Dubai-based exchange, and TRM Labs have come to the same conclusion.
“The February 2025 Bibit violation…reshapes the annual narrative, inflated the average hack size and highlights the strategic use of cybercrime by nation-states,” the report states.
US authorities have long argued that North Korea’s select governments are using hackers to steal codes and fund nuclear programs.
Major crypto hacks often go back to the country. It is run by dictator Kim Jong Un.
TRM Labs said Crypto Hacks is increasingly “symbolic or strategic, rather than financially motivated, emphasizing a change in how crypto crime is weaponized.”
The report further added that 80% of this year’s losses are from infrastructure attacks, with hackers taking control of their private keys and seed phrases.
edit James Rubin
Discover more from Earlybirds Invest
Subscribe to get the latest posts sent to your email.
