How North Korea Stole $41M from Stake.com — And What Crypto Casinos Must Do
In September 2023, the FBI confirmed that Lazarus Group — North Korea's state-sponsored hacking unit — stole $41 million from crypto gambling platform Stake.com. The attack compromised private keys controlling the platform's hot wallets. Nation-states are now treating crypto casinos as financial infrastructure targets.
$41M stolen from Stake.com by North Korean state hackers in a single attack.
How the Attack Worked
Lazarus Group's attack on Stake.com targeted the private keys controlling cryptocurrency hot wallets used for player deposits and withdrawals. The exact compromise method was not publicly disclosed, but Lazarus Group typically uses spear phishing against key personnel combined with custom malware to harvest cryptographic material from the devices and systems of individuals with key access. Once they had the keys, they drained wallets through transactions that appeared entirely legitimate.
Why Crypto Casinos Are Nation-State Targets
The Lazarus Group's mandate is to generate foreign currency for the North Korean regime through cybercrime. Since 2017, the group has stolen an estimated $3 billion in cryptocurrency. Crypto casinos represent attractive targets: large hot wallet balances required for operational liquidity, cryptocurrency that can be laundered through DeFi mixing, and — historically — security practices weaker than equivalent fiat financial institutions.
Frequently Asked Questions
Is Lazarus Group actively targeting iGaming companies?
The FBI has confirmed Lazarus Group targeting of crypto platforms including casinos. Their targeting is financially motivated — any platform holding significant cryptocurrency balances is a potential target.
How should crypto casinos store private keys?
Hardware security modules (HSMs) for key storage, multi-signature arrangements requiring multiple approvers for large transactions, air-gapped signing devices, and strict operational security around key management personnel.
Discuss advanced threat protection for your crypto platform
Kyanite Blue specialises in cybersecurity for iGaming operators. MGA-licensed operators across Malta trust our stack.
Get in touchReady to secure your iGaming operation?
MGA-licensed operators across Malta trust Kyanite Blue.