A stylized illustration of a cylindrical cup with blue arrows and lines indicating a swirling or rotational motion inside the cup.
Briefs
Finance
Free NewsletterPro Login

North Korea Hit Crypto From Two Directions This Week. Investors Lost $280 Million in One Attack Alone.

Nate Gregory
Published Apr 2, 2026
Share:
A safe with crypto coins and a screen showing a downward price graph, set in a server room—a scene highlighting investors' concerns over security breaches linked to North Korea's involvement in the crypto market.
Summary:
  • Hackers linked to North Korea drained $280 million from DeFi platform Drift after spending weeks quietly setting up the attack.
  • The same week, suspected Pyongyang-linked hackers planted malicious code inside Axios - a software tool used by thousands of U.S. companies.
  • North Korea has now stolen more than $300 million in crypto this year alone, according to blockchain security firm Elliptic.

North Korea didn't just rob one crypto platform this week. It hit two targets at the same time - a direct heist and a hidden software trap - in what looks like the most aggressive week of state-backed crypto theft in recent memory.

The Drift Heist

Drift - a decentralized finance platform where investors can lend, borrow, and trade crypto - confirmed Wednesday that attackers pulled $280 million off the platform in a single operation.

This wasn't a code exploit. Drift says its smart contracts and core programs were never breached. Instead, the attackers spent weeks working their way into the company's security council - the group that controls admin-level powers - by tricking insiders into approving access they shouldn't have.

They planted two pre-approved transactions on March 23. Then they waited.

On April 1, they fired both transactions, seized admin controls, stripped out withdrawal caps, and moved $280 million before anyone could stop it. Every dollar in Drift's lending, borrowing, vault, and trading features was exposed.

By Thursday morning, blockchain investigators at Elliptic had tied the attack to North Korea. The transaction patterns and laundering methods matched operations Elliptic has tracked from Pyongyang's hackers before.

If confirmed, it would be the 18th North Korean crypto attack Elliptic has flagged this year.

The Software Trap

The Drift heist wasn't the only move. Days earlier, suspected North Korean hackers broke into the account of a developer who maintains Axios - an open-source tool baked into thousands of company websites across health care, finance, and tech.

For about three hours, the attackers pushed out infected updates to every company that downloaded the software during that window. Security firm Huntress counted around 135 infected machines spread across about a dozen organizations - and that's just the early tally.

Google-owned Mandiant confirmed the North Korea connection. Its chief technology officer said the hackers will likely use whatever access they gained to hunt for crypto stored at those companies.

Full recovery could take months.

What to Watch

North Korea has turned crypto theft into a pillar of its economy. Pyongyang's hackers pulled in more than $2 billion from crypto platforms last year alone, and U.S. officials have said roughly half of the country's missile program is bankrolled by that kind of theft.

This week showed investors two things at once - North Korea can hit a platform head-on and slip into the software supply chain at the same time.

The Drift attack looks a lot like last summer's $1.5 billion Bybit breach. Both relied on tricking people rather than breaking code. Both moved fast once the trap was sprung.

Crypto security isn't just a tech problem anymore - It's a national security one.

Disclosure

Get Market Briefs delivered to your inbox every morning for free!

No fluff. No noise. No politics. Just finance news you can read in 5 minutes.

Recent News

1 2 3 609

Blogs

May 5, 2026
How to Create Multiple Income Streams: A Beginner's Playbook
By Milena Thomas
  • Most people rely on a single income stream from their job - which is also the most heavily taxed.
  • Multiple income streams come from a mix of cash flow, dividends, side businesses, real estate, and royalties.
  • The fastest path for most beginners is starting with one extra stream - usually dividends or a side hustle - and stacking from there.
Read More
May 5, 2026
The 60/40 Portfolio Explained: A Beginner's Guide
By Nate Gregory
  • A 60/40 portfolio holds 60% in stocks and 40% in bonds (or other fixed income).
  • It's designed to balance growth from stocks with stability from bonds.
  • Your "right" mix depends on age, time horizon, income needs, and how well you sleep when markets drop.
Read More
May 5, 2026
How to Invest in Silver: A Beginner's Guide
By Jackson Moreland
  • Silver is both a precious metal and an industrial metal, used in solar panels, electronics, and medical tech.
  • Investors can buy silver four main ways: physical bars and coins, ETFs, mining stocks, or futures contracts.
  • Most beginners are best served by allocating a small slice of their portfolio to silver - usually between 1% and 3%.
Read More
May 1, 2026
Asset Allocation by Age: The Right Portfolio Mix at Every Stage of Life
By Andre Savage
  • Younger investors should hold mostly stocks because they have decades to recover from crashes and benefit from compounding.
  • Allocations gradually shift toward bonds and stable income as retirement approaches, but stocks remain important even past age 65 to outpace inflation.
  • Annual rebalancing is essential - it forces you to buy low and sell high while keeping your portfolio aligned with your actual life stage.
Read More
April 30, 2026
Stablecoin Explained: Why Some Cryptocurrencies Actually Aren't Volatile
By Jackson Moreland
  • Stablecoins are cryptocurrencies pegged to stable assets like the US dollar, giving crypto-style speed and access without the volatility of Bitcoin or Ethereum.
  • Fiat-backed stablecoins like USDC are the safest option, while algorithmic stablecoins have failed spectacularly and should generally be avoided.
  • Stablecoins fit a portfolio as cash reserves with better yields, a hedge against crypto volatility, and a fast, cheap rail for international transactions.
Read More
April 30, 2026
Buy Now, Pay Later Risks: Why This "Easy" Payment Method Is Dangerous to Your Wealth
By Nate Gregory
  • Buy now, pay later services like Klarna, Affirm, and Sezzle are debt products designed to feel harmless while keeping users in a cycle of overspending.
  • BNPL exploits psychological debt blindness, triggers late fees, and damages credit scores without helping users build positive credit history.
  • Building real wealth means waiting 30 days, paying upfront when you have the cash, and avoiding systems built to extract money from your future income.
Read More
April 30, 2026
Dividend Payout Ratio: The Secret Metric That Shows If a Stock Is Safe or Risky
By Jackson Moreland
  • Dividend payout ratio is total dividends paid divided by net income, showing the percentage of earnings a company returns to shareholders.
  • A 20-50% payout ratio is generally safe and sustainable, while ratios above 75% often signal a dividend cut is coming.
  • High dividend yields can be warning signs, not opportunities - safety and dividend growth matter more than the headline yield number.
Read More
April 30, 2026
Ethereum for Beginners: What It Is and Why Smart Investors Are Paying Attention
By Milena Thomas
  • Ethereum is a blockchain platform that runs smart contracts, while Ether (ETH) is the cryptocurrency that powers the network.
  • Use cases include decentralized finance, NFTs, gaming, supply chain tracking, and digital identity - many still experimental.
  • Most investors should treat Ethereum as a small allocation hedge using dollar-cost averaging, not a get-rich-quick lottery ticket.
Read More
April 30, 2026
Dollar Cost Averaging Strategy: How to Beat Emotion and Build Wealth Steadily
By Nate Gregory
  • Dollar cost averaging means investing the same amount at regular intervals regardless of what the market is doing.
  • The strategy automatically buys more shares when prices are low and fewer when prices are high, lowering your average cost over time.
  • DCA removes emotion, eliminates the need to time the market, and turns volatility into a mathematical advantage for long-term investors.
Read More
April 30, 2026
The BRRRR Strategy: How to Build Real Estate Wealth Without Big Money Down
By Andre Savage
  • BRRRR stands for Buy, Rehab, Rent, Refinance, Repeat - a five-step framework for scaling real estate without saving for big down payments.
  • The strategy works by buying distressed properties below market value, adding value through smart renovations, and pulling out equity through refinancing.
  • Tax advantages like depreciation and mortgage interest deductions make BRRRR a powerful tool for owners willing to manage tenants and contractors.
Read More
1 2 3 20
Share via
Facebook
X (Twitter)
LinkedIn
Mix
Pinterest
Bluesky
Tumblr
Skype
Buffer
Pocket
VKontakte
Parler
Xing
Reddit
Line
Flipboard
MySpace
Delicious
Amazon
Digg
Evernote
Blogger
LiveJournal
Baidu
MeWe
NewsVine
Yummly
Yahoo
WhatsApp
Viber
SMS
Telegram
Facebook Messenger
Like
Email
Print
Copy Link
Copy link
CopyCopied