SBI Crypto has been reported to have been hit by a $ 21m hack with suspected DPRK links
The addresses linked to the SBI Crypto, a subsidiary of Japan’s financial giant SBI, saw the weeds -suspected flows worth nearly $ 21 million in Sept. 24, 2025, according to blockchain investigator Zachxbt.
The stolen funds include Bitcoin Ether , , and . The robbery was then funneled with five instant exchanges before depositing in tornado cash, a crypto mixing service previously punished by the US treasury.
In a Telegram post, ZachXBT noted that many indicators resemble tactics used in previous state -supported cyberattacks, raising concerns that this incident may be another in a string of DPRK -related heists.
SBI crypto operates as a mining pool under the SBI group, a publicly exchanged financial conglomery in Japan with significant exposure to both traditional and digital possessions.
As a publication, the SBI Group did not publicly disclose the incident or issued an official response. The SBI Group also did not respond to CoinDesk’s request for comment.
Hacking groups linked to North Korea, especially the Lazarus Group, are tied to billions of stolen digital assets in recent years. Funds are often laundered by decentralized mixers such as Tornado Cash, despite global regulations.
