The G7 Summit is for the first time listed as a global security threat, and North Korean hackers’ rampant theft of cryptocurrencies has become the focus.

G7 Leaders Focus on North Korean Hackers' Cryptocurrency Theft Operations, Listing Them as Major International Security Issues. Countries Will Strengthen Intelligence Sharing, and Industry Security Standards Face Strict Scrutiny.

G7 Leaders Concerned About North Korean Cybercrime, Cryptocurrency Theft Elevated to International Security Issue

Leaders of the Group of Seven (G7) recently expressed concern during the summit about North Korea’s ongoing expansion of cybercriminal activities, and have classified the theft of cryptocurrencies through hacking as a significant international security issue. This indicates that crypto asset crimes have moved beyond financial regulation concerns and into the realm of national security and geopolitical discussions.

Leaders from various countries pointed out that North Korea has long used organized cyberattacks to acquire large sums of funds, which may be used for weapons development, missile programs, and other activities restricted by international sanctions. As the scale of attacks continues to grow, cryptocurrencies have become a key channel for sanctions evasion and illegal fund flows.

In recent years, North Korean hacker groups, including Lazarus Group, have been repeatedly accused of attacking major cryptocurrency exchanges, cross-chain bridges, DeFi protocols, and blockchain infrastructure, accumulating thefts totaling billions of dollars.

Further Reading
The Most Rampant Coin Theft Group in History? What is Lazarus Hacker Group? 3 Charts to Understand Money Laundering Tactics

North Korean Hackers Continue to Upgrade Attack Methods, Exchanges and DeFi as Main Targets

According to statistics from multiple blockchain security agencies, North Korea-related hacker groups have become some of the most active crypto crime organizations worldwide. Their targets include exchanges, wallet service providers, cross-chain bridges, infrastructure providers, and blockchain development teams.

These groups often use social engineering, fake job invitations, malicious software, phishing websites, fake investment pitches, and supply chain attacks to infiltrate target systems, then obtain private keys, employee accounts, or internal system control. Some attacks even remain dormant within corporate networks for extended periods, waiting for transfer authorizations or fund movement opportunities.

Because blockchain transactions are inherently cross-border, once assets are acquired, hackers typically launder funds through mixers, cross-chain bridges, multi-layer address transfers, and over-the-counter trading networks, greatly increasing the difficulty of tracing funds.

Countries Strengthen Intelligence Sharing, On-Chain Tracking Becomes Key Law Enforcement Tool

In response to the rising frequency of North Korean hacker attacks, the US, Japan, South Korea, and European countries have strengthened intelligence sharing and law enforcement cooperation in recent years, aiming to prevent illegal funds from flowing into North Korea. These collaborations include cybersecurity alerts, sanctions list updates, wallet address tagging, exchange asset freezes, and cross-border judicial assistance.

The US Treasury has previously sanctioned numerous crypto addresses involved in North Korean money laundering, as well as mixers, over-the-counter traders, and related individuals and entities. Blockchain analysis firms are also working with government agencies and exchanges to identify suspicious fund flows through on-chain tracking tools.

G7 leaders emphasized during this summit that future efforts will continue to enhance cybersecurity cooperation mechanisms and work with the private sector to improve defenses. For the crypto industry, exchanges, custodians, wallet providers, and DeFi protocols may face stricter security and compliance requirements in the future.

Crypto Crime Influences Geopolitics, Industry Security Standards to Be Reassessed

Historically, crypto security incidents were viewed as industry risks or technical issues, but as North Korean hacker groups continue to leverage blockchain ecosystems to obtain funds, these issues are gradually being integrated into national security and international political frameworks.

For regulators, future focus will no longer be limited to exchange anti-money laundering and customer verification systems but will extend to cross-chain bridge security, smart contract auditing, private key management, employee cybersecurity training, and high-risk address monitoring.

As G7 elevates North Korean crypto theft issues to a global security level, cooperation among governments, law enforcement agencies, and blockchain companies is likely to increase. For the crypto industry, security capabilities will not only be a competitive advantage but also a crucial factor in gaining regulatory trust.