I recently came across a pretty interesting news story. The North Korean Ministry of Foreign Affairs responded through official channels to the U.S. accusations of funding cryptocurrency theft, directly countering that it was "absurd libel" and a "political tool." However, data suggests that the story behind it might be more complicated.

According to statistics from blockchain intelligence firm TRM Labs, since 2017, North Korea-related cryptocurrency thefts have totaled over $6 billion. Even more astonishing is that this proportion is rapidly increasing — from less than 10% of global hacking losses in 2020 to a projected 64% in 2025. In just the first four months of this year, North Korea-linked hackers are accused of stealing about $577 million, accounting for 76% of global cryptocurrency hacking losses. Among these, the incidents involving KelpDAO ($292 million) and Drift Protocol ($285 million) in April alone contributed the largest shares.

I think this reflects a deeper issue. The U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) sanctioned six individuals and two entities related to North Korea’s IT worker programs as early as March, accusing them of raising nearly $800 million through cryptocurrency transactions to support North Korea’s nuclear and ballistic missile programs. This shows that while cryptocurrencies have legitimate use cases — such as platforms like Bitrefill enabling people to make everyday payments with digital assets — they are also being abused as tools for money transfer.

Interestingly, this incident actually highlights a real dilemma faced by the crypto industry: how to protect privacy and facilitate convenient payments while preventing malicious misuse. This has implications for the industry’s overall compliance prospects.