In a digital heist that sent shockwaves through the cryptocurrency world, DMM Bitcoin fell victim to one of history’s most devastating crypto thefts in May 2024. The attackers made off with 4,502.9 BTC, worth approximately $305 million, ranking this incident as the third-largest crypto theft in history and the biggest since December 2022.
The breach occurred at 1:26 p.m. Tokyo time when attackers executed a large-scale transfer of Bitcoin from DMM’s wallet to multiple new addresses.
Imagine watching your bank account drain in real-time – except instead of a trickle, it was more like someone backed up a digital dump truck and emptied the vault in seconds.
It was a financial tornado—assets vanishing faster than you could click refresh on your screen.
DMM immediately froze crypto withdrawals and trading services while promising customers their deposits were “fully guaranteed,” though they remained vague about when funds would be returned. After the incident, DMM Bitcoin acknowledged the hack and implemented additional security measures to prevent future incidents.
Behind this sophisticated operation was North Korea’s infamous TraderTraitor group (also known as Jade Sleet or UNC4899), according to investigations by the FBI and Japanese authorities.
These weren’t amateur hackers testing their skills – they were state-backed professionals with a track record of similar heists.
The attack began months earlier when a North Korean operative posed as a recruiter on LinkedIn, targeting an employee at Ginco, the wallet infrastructure provider for DMM.
The unsuspecting employee clicked a link supposedly for a coding test, unwittingly installing malware that compromised their credentials.
Think of it as leaving your house keys with someone who promised to water your plants but secretly made copies to use later.
Once inside DMM’s systems, the attackers monitored internal communications, impersonated staff, and ultimately manipulated a legitimate transaction request to divert funds to their own wallets. The incident highlights why many cryptocurrency experts recommend using cold wallet storage for significant digital asset holdings.
The stolen Bitcoin was quickly scattered across hundreds of wallets using complex mixing techniques to cover their tracks. The hackers employed sophisticated peel chain techniques to gradually reduce transaction sizes and obscure the money trail.
The financial damage proved insurmountable for DMM Bitcoin, which later announced its closure, unable to recover from this devastating blow despite their initial assurances to customers.
