Crypto2Community
HomeCrypto NewsReviewsGuidesGamblingTradingPress Release

Crypto 2 Community

  • About Us
  • Editorial Policy
  • Why Trust Us
  • Contact Us
  • Privacy Policy
  • Submit a Press Release

Cryptocurrency

  • Best Cryptos to Buy Now
  • Best Crypto Exchanges
  • How To Buy Cryptocurrency
  • Best Crypto Wallets
  • Best Altcoins to Buy

Gambling

  • Best Bitcoin Casinos
  • Best Ethereum Casinos
  • Best Crypto Live Casinos
  • Best Crypto Faucet Casinos
  • Provably Fair Bitcoin Casinos

Best Platforms

  • eToro Review
  • BC.Game Review
  • Jackbit Review
  • Metaspins Review
  • CryptoLeo Review

© 2026 Crypto2Community.com

CAUTION: The content presented on this platform is not intended as financial guidance, and we lack the authorization to offer investment advice. Any material found on this website should not be construed as an endorsement or recommendation of any specific trading strategy or investment decision. The information provided herein is of a general nature, and therefore it is essential to evaluate it in the context of your objectives, financial circumstances, and requirements.

Investment activities involve speculation and entail inherent risks to your capital. This website is not intended for utilization in jurisdictions where the described trading or investment activities are prohibited, and it should only be accessed by individuals who are legally permitted to do so. Depending on your country or state of residence, your investment may not be eligible for investor protection, hence it is advisable to conduct thorough research independently or seek appropriate guidance. While this website is accessible to you free of charge, please note that we may receive commissions from the companies featured on this site.

Disclosure: 18+ Rules regarding online gambling vary from country to country, please ensure you are following them and gamble responsibly. The content on this website is provided for entertainment purposes only. We may utilise affiliate links within our content, and receive commission.

Home/Crypto News
Crypto News

Lazarus Group Emerges as Prime Suspect in Upbit’s $37M Crypto Heist

Austin Mwendia
Written byAustin Mwendia
Crypto Writer
Fact checked byJoshua Downes
UpdatedNovember 28, 2025
Our disclosure policy →
!

Cryptocurrency trading is speculative and your capital is at risk when you trade. We may earn affiliate commissions from some of the products on this page - at no extra cost to you.

ShareTweetShareLinkedIn
Lazarus Group Emerges as Prime Suspect in Upbit’s $37M Crypto Heist

Highlights:

  • Investigators have linked Upbit’s $37M crypto heist to known tactics from North Korean hacking groups.
  • Lazarus Group remains the prime suspect as South Korean officials track token movements.
  • Dunamu has boosted user confidence with full reimbursement and swift controls after the breach.

South Korean authorities are preparing to open a full investigation into the $37M crypto heist after new evidence surfaced on Friday. Officials said transaction patterns from the theft matched methods seen in previous attacks linked to North Korean hackers. They also confirmed plans to enter the exchange for an on-site inspection soon. Analysts noted that the movement of stolen assets raised fresh suspicion of coordinated activity. The incident has pushed the exchange and regulators into immediate crisis mode.

Advertisement

Banner

BREAKING: North Korea’s Lazarus Group is suspected to be behind the $30 million hack on South Korea’s Upbit exchange.

This marks yet another attack by the notorious hacking group, which has now stolen over $6 BILLION in cryptocurrency since 2017

In 2025 alone, Lazarus has… https://t.co/bF3KqLmaQz pic.twitter.com/uMnY1dKfQj

— Budhil Vyas (@BudhilVyas) November 28, 2025

Investigators said the theft involved Solana-linked assets worth 44.5 billion won that moved to an unauthorized wallet. They added that the outflows reflected a familiar structure used in the 2019 Upbit hack. In that case, attackers took 58 billion won in Ethereum through a staged internal compromise. Officials now believe the same group may have bypassed core systems by impersonating administrators. They said this technique matched past cases tied to North Korean groups.

Officials also discovered that the hackers spread the stolen tokens to various chains in minutes. According to them, this strategy was meant to disrupt tracking patterns and slow down the recovery operations. Swaps to USDC and subsequent transfers to Ethereum were later verified on-chain by monitors. Investigators indicated that these moves were well planned and highly prepared. They emphasized that the pattern was similar to the previous cases related to North Korean cyber units.

Dunamu Moves to Reimburse Users as Lazarus Group Probe Expands

Dunamu, the operator of Upbit, confirmed the breach on Thursday and halted deposits and withdrawals. The company said it acted quickly to prevent further losses after detecting abnormal movements. It also promised users that balances that were affected would all be refunded in full out of the company’s reserves.

The officials indicated that the new evidence reinforced the ongoing investigation of the Lazarus Group. They pointed out that breach signals matched activity observed in the recent attacks in the region. Authorities also pointed to the increased pressure to align with the US agencies regarding cyber defense. This coordination would assist in monitoring stolen assets across multiple networks before they leave the region. They added that North Korea tends to generate hard currency through these schemes.

South Korean leaders again warned that stolen crypto can support Pyongyang’s weapons programs. They emphasized the need for strict vigilance across exchanges as digital threats increase. Second Vice Foreign Minister Kim Ji-na said Seoul may review its sanctions approach if needed. She stressed that strong cooperation with Washington remains a central priority. Her remarks added urgency to the expanding investigation.

Upbit’s $37M Crypto Heist Heightens Scrutiny on South Korea’s Crypto Oversight

The breach placed new pressure on regulators to evaluate internal safeguards at major trading platforms. Officials said the case revealed weaknesses that require immediate attention. Authorities warned that the latest breach could mark a wider shift in tactics.

The attack also arrived one day after Naver acquired Dunamu through a share-swap deal. This timing drew national interest as the investigation expanded. Naver Financial is also preparing to launch a stablecoin wallet in Busan next month. The firm developed the system with Hashed and the Busan Digital Asset Exchange. This rollout will now move forward under closer public scrutiny.

Naver Financial has acquired Dunamu

📑 About:
Dunamu is a South Korean fintech company that provides a wide range of services with a focus on blockchain.

🤝 Acquired by: Naver Financial pic.twitter.com/B0knXJDeQt

— LA Crypto & Research (@LA_Onchain) November 28, 2025

eToro Platform

Best Crypto Exchange

  • Over 90 top cryptos to trade
  • Regulated by top-tier entities
  • User-friendly trading app
  • 30+ million users
9.9

5 Stars

Visit eToro

eToro is a multi-asset investment platform. The value of your investments may go up or down. Your capital is at risk. Don’t invest unless you’re prepared to lose all the money you invest. This is a high-risk investment, and you should not expect to be protected if something goes wrong.

Advertisement

Banner

Tags

Crypto HacksLazarus GroupSouth KoreaUPBIT
Austin Mwendia
Crypto2CommunityContributor
Author

Austin Mwendia

Austin Mwendia is a passionate crypto journalist with three years of experience. He has contributed to various media outlets, covering blockchain technology, market analysis, and financial trends. He is committed to educating readers and expanding the adoption of blockchain and decentralized finance.

View full profile →
i
How we work

About Crypto2Community's Editorial Process

Crypto2Community's editorial policy is centered on delivering thoroughly researched, accurate, and unbiased content. We uphold strict editorial policy and sourcing standards, and each page undergoes diligent review by our team of top crypto industry experts and seasoned editors. This process ensures the integrity, relevance, and value of our content for our readers.

More by this author

  • Suspected Hedera Network Exploit Sends Over $5.8M to Ethereum
  • IMF Paper Warns Stablecoins Could Fuel Currency Runs During Market Stress
  • Bitcoin ETFs End Eight-Week Slide with $197 Million Inflow 
Continue reading

Related Articles

Suspected Hedera Network Exploit Sends Over $5.8M to EthereumCrypto News
Suspected Hedera Network Exploit Sends Over $5.8M to Ethereum
Crypto News6 hours ago
Raymond Munene
By Raymond Munene7/11/2026
IMF Paper Warns Stablecoins Could Fuel Currency Runs During Market StressCrypto News
IMF Paper Warns Stablecoins Could Fuel Currency Runs During Market Stress
Crypto News9 hours ago
Austin Mwendia
By Austin Mwendia7/11/2026
Bitcoin ETFs End Eight-Week Slide with $197 Million Inflow Crypto News
Bitcoin ETFs End Eight-Week Slide with $197 Million Inflow 
Crypto News10 hours ago
Raymond Munene
By Raymond Munene7/11/2026

Advertisement

Banner

Advertisement

Banner

🔥Latest offers

Play Now

9.85 Stars

🔥 Get up to 60% with all rewards

Play Now →

Claim Bonus

9.65 Stars

💸 300% deposit bonus up to 20,000 USD

Claim Bonus →

Visit eToro

9.95 Stars

Best Crypto Exchange 2025

Visit eToro →

Virtual currencies are highly volatile. Your capital is at risk.

Visit KuCoin

9.55 Stars

Trading features & low fees

Visit KuCoin →

Popular Topics

  • Sei Price Prediction 2025, 2030, 2040
  • Uniswap Price Prediction 2025, 2030, 2040
  • Near Protocol Price Prediction 2025, 2030, 2040
  • Loopring Price Prediction 2025, 2030, 2040
  • Chainlink Price Prediction 2025, 2030, 2040

Trending News

  • Suspected Hedera Network Exploit Sends Over $5.8M to Ethereum
  • IMF Paper Warns Stablecoins Could Fuel Currency Runs During Market Stress
  • Bitcoin ETFs End Eight-Week Slide with $197 Million Inflow 
  • Best Memecoins to Invest in Today, July 11 – PEPE, FLOKI, SHIB
  • USDT on TRON Climbs to Record $90.3B Despite Broader Stablecoin Decline
  • XRP Ledger Activity Falls to 2026 Lows as Interest in XRP Drops
  • Robinhood Says Agentic AI Crypto Trading Is Coming Soon
  • Five Senate Democrats Demand Hearings Over Trump’s $1.4 Billion Crypto Earnings
  • Celestia Price Analysis – TIA Targets $0.52 Breakout as AI Demand Strengthens Bull Case
  • Morpho Price Prediction – MORPHO Eyes $3 as Demand Strengthens
  • Ethereum Foundation Team Disbands Protocol Support as Restructuring Deepens
  • Circle Wins Final OCC Approval to Establish a US National Trust Bank
  • Crypto Market Records Longest Losing Streak Since 2022, Says Bitwise
  • Top Cryptocurrencies to Watch Today, July 10 – Zcash, Stellar, Chainlink
  • Robinhood Chain Fuels Ethereum Demand After Strong First-Week Launch
  • Tom Lee’s BitMine Buys Another 20,500 Ethereum Worth $35.9M
  • Metaplanet Launches Joint Study on Bitcoin-Backed Digital Credit Products
  • Russia Tightens Crypto Payment Rules with New Reporting Thresholds and Bank Limits
  • Arbitrum Price Analysis – ARB Rallies as Bulls Target a Breakout to $0.14
  • Render Price Prediction – Why RENDER Could Soon Rally to $2.10