Cops Accidentally Leak Crypto Wallet Password, $5M Stolen
▼ Summary
– South Korean police accidentally leaked a crypto wallet’s recovery phrase in a press release image, enabling a thief to steal most of the seized assets.
– The leaked image clearly showed a handwritten note containing the mnemonic phrase, which acts as a master key for the cold wallet.
– A blockchain expert reported that approximately $4.8 million worth of PRTG tokens were stolen from the wallet.
– On-chain data showed the thief first deposited a small amount of ETH for fees, then transferred the tokens out in three transactions.
– The National Tax Service apologized for the leak, admitted to careless failure to redact the password, and launched an investigation to trace and retrieve the funds.
A major security lapse by South Korean authorities led to the theft of millions in cryptocurrency after a press release inadvertently exposed the keys to a seized digital wallet. The incident highlights the critical need for specialized knowledge when handling digital assets, even for law enforcement agencies. The mistake occurred when officials posted photos that clearly displayed a handwritten recovery phrase, essentially the master password to the wallet.
The press release, which has since been taken down, was originally intended to showcase a successful operation against tax evasion. Authorities had seized a Ledger hardware wallet containing a significant amount of cryptocurrency. In their effort to create a compelling visual, they included an image of the device alongside a note. Unfortunately, that note contained the complete 12 or 24-word mnemonic seed phrase, leaving the entire contents of the wallet vulnerable.
Anyone familiar with cryptocurrency could use such a phrase to instantly gain full control over the assets, bypassing all other security measures like PIN codes. The images were captured by media outlets before the takedown, and the damage was swift. Blockchain analysis indicates that a thief quickly deposited a small amount of Ethereum to cover transaction fees and then emptied the wallet of its primary holdings.
An expert reviewing the case confirmed that approximately 4 million PRTG tokens, valued at nearly $4.8 million, were transferred out in a series of transactions. The funds were moved from the supposedly secure cold wallet to an external address, with little chance of recovery due to the irreversible nature of most blockchain transactions.
Following the breach, the National Tax Service issued a formal apology, describing the error as deeply regrettable. Officials admitted they included the images to make their announcement more engaging but failed to properly redact the sensitive information. They stated there was no excuse for the oversight and confirmed that a joint investigation with national police is underway in an attempt to trace the stolen funds, though prospects for retrieval are considered slim.
This event serves as a stark reminder of the unique challenges posed by digital evidence. Handling cryptocurrency requires a fundamentally different protocol than seizing physical cash or traditional financial accounts. A simple photograph can compromise an entire fortune if it reveals cryptographic keys, underscoring the importance of rigorous training and procedural safeguards for any agency involved in such seizures.
(Source: Ars Technica)