South Korean Cryptocurrency Exchange Hacked (Again)

Foley Hoag LLP - Security, Privacy and the Law
Contact
LinkedIn
Facebook
X
Send
Embed

As part of our Year in Preview series, we’ve recently covered both international cyberwar and the rise of cryptocurrency.  Just before the holidays, both of these topics collided in a decidedly unpleasant manner.

On December 19, the South Korean cryptocurrency exchange Youbit filed for bankruptcy, disclosing that it had just suffered a hack that made off with about one fifth of the bitcoins stored on its platform.  Youbit’s users can withdraw 75% of the value that’s left, but anything beyond that will have to wait until after bankruptcy proceedings.

The theft highlights some of cryptocurrency’s geopolitical ramifications.  South Korea accounts for, on average, 20% of bitcoin’s daily trading volume.  And while Youbit is a relatively minor player on the scene, over $100m in coins have been stolen in hacks on South Korean exchanges just this year.  No attacker has claimed responsibility, but the main suspects are state actors from North Korea, which is said to be accumulating a “war chest” of bitcoin.  Is this a canny way to circumvent restrictions on normal, fiat currency trade?  A poke in the eye of South Korea?  Or is Kim Jong Un just another crazed crypto speculator?  We don’t know enough at this point to say for sure.

Although there was no official response against North Korea, the hack did prompt internal action by the South Korean government.  It announced it would be launching a new round of regulations on cryptocurrency, including bans on anonymous accounts and legislation enabling regulatory bodies to shut down exchanges.  This yet another reminder that, for all the libertarian dreams underpinning the idea of cryptocurrency, escaping government oversight altogether is an impossible task.

Lastly, the Youbit hack should serve as a cautionary tale about the dangers of storing cryptocurrency online.  By keeping coins in a wallet on an exchange, users are placing themselves at the mercy of that exchange’s cybersecurity.  And of course, these exchanges – smaller companies storing millions of dollars of pseudo-anonymous currency – are juicy targets, as evidenced by the frequency of heists like this one.  Once you trade fiat currency into cryptocurrency, best practice is to then transfer it off the exchange it to a more secure offline destination, such as a dedicated USB “hardware wallet” or even a “paper wallet.”  This may seem like burying gold in the backyard, but better buried than stolen, I say.

 

Send Print Report

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations. Attorney Advertising.

© Foley Hoag LLP - Security, Privacy and the Law

Written by:

Foley Hoag LLP - Security, Privacy and the Law
Foley Hoag LLP - Security, Privacy and the Law
Contact
more
less

PUBLISH YOUR CONTENT ON JD SUPRA NOW

  • Increased visibility
  • Actionable analytics
  • Ongoing guidance

Foley Hoag LLP - Security, Privacy and the Law on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign Up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide