{"id":2846,"date":"2025-12-30T16:00:00","date_gmt":"2025-12-30T10:30:00","guid":{"rendered":"https:\/\/tradebrains.in\/crypto\/?p=2846"},"modified":"2025-12-30T15:37:12","modified_gmt":"2025-12-30T10:07:12","slug":"north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025","status":"publish","type":"post","link":"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/","title":{"rendered":"North Korea Steals $2 Billion: How Weak Passwords Cost Web3 $4 Billion in 2025"},"content":{"rendered":"\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p><strong><em>Synopsis: <\/em><\/strong><em>Web3 platforms lost nearly $4 billion in 2025, with North Korean hackers responsible for 52%. Weak access controls and poor key management caused most losses, not smart contract bugs.<\/em><\/p>\n<\/blockquote>\n\n\n\n<p>Web3 platforms lost nearly $4 billion in 2025, marking a sharp rise from the previous year. More than half of these losses came from North Korean state-sponsored hackers. The Hacken 2025 Yearly Security Report reveals that weak access controls and sloppy key management drove most damages. Despite falling quarterly losses after a massive first-quarter spike, the industry still faces systemic risks that go beyond simple coding errors.<\/p><div class=\"trade-delta\" style=\"margin-left: auto;margin-right: auto;text-align: center;\" id=\"trade-3958465562\"><a href=\"https:\/\/tradebrains.in\/get\/coindcxfg\/\" aria-label=\"coindcx ads\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/11\/coindcx.webp\" alt=\"coindcx ads\"  srcset=\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/11\/coindcx.webp 500w, https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/11\/coindcx-480x480.webp 480w\" sizes=\"(min-width: 0px) and (max-width: 480px) 480px, (min-width: 481px) 500px, 100vw\" width=\"350\" height=\"350\"  style=\"display: inline-block;\" \/><\/a><\/div>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"840\" height=\"508\" src=\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/image-26.png\" alt=\"\" class=\"wp-image-2849\" srcset=\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/image-26.png 840w, https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/image-26-480x290.png 480w\" sizes=\"(min-width: 0px) and (max-width: 480px) 480px, (min-width: 481px) 840px, 100vw\" \/><\/figure>\n\n\n\n<p class=\"has-text-align-center\"><strong><em>Source:&nbsp; Hacken-2025-Yearly-Security-Report<\/em><\/strong><\/p>\n\n\n\n<p>The report shows total Web3 losses reached about $4 billion. This figure is roughly $1.15 billion higher than 2024. North Korea-linked threat actors accounted for approximately 52% of stolen funds, or about $2 billion. The February 2025 Bybit breach alone resulted in nearly $1.5 billion stolen, making it the largest single crypto heist on record.<\/p><div class=\"trade-coindcx-3\" style=\"margin-left: auto;margin-right: auto;text-align: center;\" id=\"trade-3645817901\"><script data-cfasync=\"false\" type=\"text\/javascript\" id=\"clever-core\">\r\n\/* <![CDATA[ *\/\r\n    (function (document, window) {\r\n        var a, c = document.createElement(\"script\"), f = window.frameElement;\r\n\r\n        c.id = \"CleverCoreLoader101144\";\r\n        c.src = \"https:\/\/scripts.cleverwebserver.com\/fbda060f29d5b8e8c653abce4ac69b7b.js\";\r\n\r\n        c.async = !0;\r\n        c.type = \"text\/javascript\";\r\n        c.setAttribute(\"data-target\", window.name || (f && f.getAttribute(\"id\")));\r\n        c.setAttribute(\"data-callback\", \"put-your-callback-function-here\");\r\n        c.setAttribute(\"data-callback-url-click\", \"put-your-click-macro-here\");\r\n        c.setAttribute(\"data-callback-url-view\", \"put-your-view-macro-here\");\r\n\r\n        try {\r\n            a = parent.document.getElementsByTagName(\"script\")[0] || document.getElementsByTagName(\"script\")[0];\r\n        } catch (e) {\r\n            a = !1;\r\n        }\r\n\r\n        a || (a = document.getElementsByTagName(\"head\")[0] || document.getElementsByTagName(\"body\")[0]);\r\n        a.parentNode.insertBefore(c, a);\r\n    })(document, window);\r\n\/* ]]> *\/\r\n<\/script>\r\n<div class=\"clever-core-ads\"><\/div><\/div>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-operational-failures\"><strong>Operational Failures<\/strong><\/h2>\n\n\n\n<p>Access control failures and broader operational security breakdowns caused about $2.12 billion in damages. This represents nearly 53% of all 2025 losses. Smart contract vulnerabilities, by comparison, accounted for only around $512 million. The Bybit breach highlighted how attackers exploited weak multi-signature wallet setups and bypassed approval safeguards.<\/p>\n\n\n\n<p>Hacken identifies several critical operational mistakes that companies continue to make. Many firms fail to revoke developers&#8217; access when employees leave. Others rely on single private keys for managing entire protocols. Most lack Endpoint Detection and Response systems that could catch suspicious activity early.<\/p><div class=\"trade-content\" style=\"margin-left: auto;margin-right: auto;text-align: center;\" id=\"trade-454136218\"><a href=\"https:\/\/tradebrains.in\/get\/delta\/\" aria-label=\"Delta Exchange Ads\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/11\/Delta-Exchange-5-1-1.png\" alt=\"Delta Exchange Ads\"  srcset=\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/11\/Delta-Exchange-5-1-1.png 500w, https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/11\/Delta-Exchange-5-1-1-480x480.png 480w\" sizes=\"(min-width: 0px) and (max-width: 480px) 480px, (min-width: 481px) 500px, 100vw\" width=\"350\" height=\"350\"  style=\"display: inline-block;\" \/><\/a><\/div>\n\n\n\n<p>Yehor Rudystia, head of forensic at Hacken Extractor, points to these gaps as the industry&#8217;s biggest problem. He notes that regulators across the US and European Union increasingly spell out security requirements. These include role-based access control, secure onboarding with ID verification, and institutional-grade custody solutions. However, many Web3 companies still treat these requirements as optional suggestions rather than mandatory standards.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-quarterly-losses\"><strong>Quarterly Losses<\/strong><\/h2>\n\n\n\n<p>Losses peaked at over $2.3 billion in the first quarter of 2025. By Q3, that figure had dropped to around $550 million. Q2 saw approximately more than $1 billion in losses. This pattern reflects a concentration of major incidents early in the year, followed by improved awareness.<\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"829\" height=\"394\" src=\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/image-27.png\" alt=\"\" class=\"wp-image-2850\" srcset=\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/image-27.png 829w, https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/image-27-480x228.png 480w\" sizes=\"(min-width: 0px) and (max-width: 480px) 480px, (min-width: 481px) 829px, 100vw\" \/><\/figure>\n\n\n\n<p class=\"has-text-align-center\"><strong><em>Source:&nbsp; Hacken-2025-Yearly-Security-Report<\/em><\/strong><\/p>\n\n\n\n<p>Despite the quarterly decline, Hacken warns that the underlying story remains clear. The biggest and least recoverable losses still come from weak keys and compromised signers. Smart contract bugs matter, but operational security breakdowns cause far more damage.&nbsp;<\/p>\n\n\n\n<p>North Korean hackers increasingly use AI-powered tactics to enhance their phishing campaigns. These tools lower the barrier for social engineering attacks and enable more targeted operations. Centralized exchanges bore the brunt of attacks early in the year, while DeFi exploits surged later.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-mandatory-security-standards\"><strong>Mandatory Security Standards<\/strong><\/h2>\n\n\n\n<p>Rudystia emphasizes that large exchanges and custodians must treat security audits as non-negotiable in 2026. Regular penetration tests, incident simulations, custody control reviews, and independent financial audits should become mandatory. These practices exist on paper across major jurisdictions&#8217; licensing regimes, but enforcement remains weak.<\/p>\n\n\n\n<p>Yevheniia Broshevan, Hacken&#8217;s co-founder and CEO, sees a significant opportunity for improvement. The industry needs clear protocols for using dedicated signing hardware. Essential monitoring tools must become standard across all platforms. Broshevan expects overall security to improve in 2026 as regulators turn principles into requirements with enforcement mechanisms.<\/p>\n\n\n\n<p>The report urges authorities to treat North Korean tactics as a specific supervisory concern. Regulators should mandate real-time threat intelligence sharing on North Korean indicators. Platforms need threat-specific risk assessments focused on phishing-led access attacks. Rudystia argues for graduated penalties for non-compliance paired with safe-harbor protections for compliant platforms.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-industry-must-adopt-north-korea-specific-defenses\"><strong>Industry Must Adopt North Korea-Specific Defenses<\/strong><\/h2>\n\n\n\n<p>Given that North Korean clusters drove roughly half of all losses, the industry needs tailored defenses. Authorities must require continuous monitoring and anomaly detection systems. Companies should implement institutional-grade custody using hardware security modules, multi-party computation, or multi-signature setups. Cold storage should become standard for large fund holdings.<\/p>\n\n\n\n<p>The report positions 2026 as a potential turning point for Web3 security. Hacken expects the bar to rise as supervisors move from soft guidance to hard requirements. Insights from the Hacken TRUST Summit, featuring representatives from Nasdaq, JPMorgan, Citi, and Kraken, stressed cybersecurity as core infrastructure. Industry leaders agree that treating security as optional has cost billions.<\/p>\n\n\n\n<p>Most losses in 2025 were preventable with basic security hygiene rather than advanced technical solutions. The operational failures category includes insider threats, inadequate offboarding, and absent access controls. These issues often stem from treating security standards as voluntary rather than essential. The industry must shift its approach to protect users&#8217; funds and build trust in Web3 platforms.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p><em>Written By Fazal Ul Vahab C H<\/em><\/p>\n<\/blockquote>\n<div class=\"trade-after-content\" id=\"trade-4186447824\"><div id=\"taboola-below-article-thumbnails\"><\/div>\r\n<script type=\"text\/javascript\">\r\n  window._taboola = window._taboola || [];\r\n  _taboola.push({\r\n    mode: 'alternating-thumbnails-a',\r\n    container: 'taboola-below-article-thumbnails',\r\n    placement: 'Below Article Thumbnails',\r\n    target_type: 'mix'\r\n  });\r\n<\/script>\r\n<script type=\"text\/javascript\">\r\n  window._taboola = window._taboola || [];\r\n  _taboola.push({flush: true});\r\n<\/script><\/div>","protected":false},"excerpt":{"rendered":"<p>Synopsis: Web3 platforms lost nearly $4 billion in 2025, with North Korean hackers responsible for 52%. Weak access controls and poor key management caused most losses, not smart contract bugs. Web3 platforms lost nearly $4 billion in 2025, marking a sharp rise from the previous year. More than half of these losses came from North [&hellip;]<\/p>\n","protected":false},"author":7,"featured_media":2853,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"off","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[3],"tags":[3274,3270,1246,3275,3271,3276,3268,3267,3273,3269,3272],"ppma_author":[2834],"class_list":["post-2846","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-trending-news","tag-blockchain-security-report","tag-bybit-hack-2025","tag-crypto-exchange-security","tag-crypto-hacks-2025","tag-defi-security-risks","tag-hacken-security-report","tag-key-management-failures","tag-north-korea-crypto-hacks","tag-north-korean-hackers-web3","tag-weak-passwords-crypto","tag-web3-security-breaches"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v26.3 (Yoast SEO v26.3) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>North Korea Steals $2 Billion: How Weak Passwords Cost Web3 $4 Billion in 2025 - Trade Brains Crypto<\/title>\n<meta name=\"description\" content=\"North Korean hackers stole nearly $2B as weak passwords and poor key management cost Web3 platforms $4B in 2025. Here\u2019s what went wrong.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"North Korea Steals $2 Billion: How Weak Passwords Cost Web3 $4 Billion in 2025\" \/>\n<meta property=\"og:description\" content=\"North Korean hackers stole nearly $2B as weak passwords and poor key management cost Web3 platforms $4B in 2025. Here\u2019s what went wrong.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/\" \/>\n<meta property=\"og:site_name\" content=\"Trade Brains Crypto\" \/>\n<meta property=\"article:published_time\" content=\"2025-12-30T10:30:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/4k-60-FPS-2025-12-30T151603-compressed.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1280\" \/>\n\t<meta property=\"og:image:height\" content=\"854\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Crypto Editorial\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Crypto Editorial\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/\",\"url\":\"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/\",\"name\":\"North Korea Steals $2 Billion: How Weak Passwords Cost Web3 $4 Billion in 2025 - Trade Brains Crypto\",\"isPartOf\":{\"@id\":\"https:\/\/tradebrains.in\/crypto\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/4k-60-FPS-2025-12-30T151603-compressed.jpg\",\"datePublished\":\"2025-12-30T10:30:00+00:00\",\"author\":{\"@id\":\"https:\/\/tradebrains.in\/crypto\/#\/schema\/person\/ba5a7bb89667e221816ab991e2566edb\"},\"description\":\"North Korean hackers stole nearly $2B as weak passwords and poor key management cost Web3 platforms $4B in 2025. Here\u2019s what went wrong.\",\"breadcrumb\":{\"@id\":\"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/#primaryimage\",\"url\":\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/4k-60-FPS-2025-12-30T151603-compressed.jpg\",\"contentUrl\":\"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/4k-60-FPS-2025-12-30T151603-compressed.jpg\",\"width\":1280,\"height\":854},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/tradebrains.in\/crypto\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"North Korea Steals $2 Billion: How Weak Passwords Cost Web3 $4 Billion in 2025\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/tradebrains.in\/crypto\/#website\",\"url\":\"https:\/\/tradebrains.in\/crypto\/\",\"name\":\"Trade Brains Crypto\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/tradebrains.in\/crypto\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/tradebrains.in\/crypto\/#\/schema\/person\/ba5a7bb89667e221816ab991e2566edb\",\"name\":\"Crypto Editorial\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/tradebrains.in\/crypto\/#\/schema\/person\/image\/36ff8defa782859d229cf17fb46991a0\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/bd7d6331c5ab74181158fb2f0f0d9eada16909507ed513a20867478cf3bbdd43?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/bd7d6331c5ab74181158fb2f0f0d9eada16909507ed513a20867478cf3bbdd43?s=96&d=mm&r=g\",\"caption\":\"Crypto Editorial\"},\"description\":\"The Trade Brains Crypto Editorial is a collective of seasoned crypto analysts, blockchain researchers, and digital asset traders with over 10+ years of combined experience in the cryptocurrency ecosystem.\",\"url\":\"https:\/\/tradebrains.in\/crypto\/author\/crypto-editorial-team\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"North Korea Steals $2 Billion: How Weak Passwords Cost Web3 $4 Billion in 2025 - Trade Brains Crypto","description":"North Korean hackers stole nearly $2B as weak passwords and poor key management cost Web3 platforms $4B in 2025. Here\u2019s what went wrong.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/","og_locale":"en_US","og_type":"article","og_title":"North Korea Steals $2 Billion: How Weak Passwords Cost Web3 $4 Billion in 2025","og_description":"North Korean hackers stole nearly $2B as weak passwords and poor key management cost Web3 platforms $4B in 2025. Here\u2019s what went wrong.","og_url":"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/","og_site_name":"Trade Brains Crypto","article_published_time":"2025-12-30T10:30:00+00:00","og_image":[{"width":1280,"height":854,"url":"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/4k-60-FPS-2025-12-30T151603-compressed.jpg","type":"image\/jpeg"}],"author":"Crypto Editorial","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Crypto Editorial","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/","url":"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/","name":"North Korea Steals $2 Billion: How Weak Passwords Cost Web3 $4 Billion in 2025 - Trade Brains Crypto","isPartOf":{"@id":"https:\/\/tradebrains.in\/crypto\/#website"},"primaryImageOfPage":{"@id":"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/#primaryimage"},"image":{"@id":"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/#primaryimage"},"thumbnailUrl":"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/4k-60-FPS-2025-12-30T151603-compressed.jpg","datePublished":"2025-12-30T10:30:00+00:00","author":{"@id":"https:\/\/tradebrains.in\/crypto\/#\/schema\/person\/ba5a7bb89667e221816ab991e2566edb"},"description":"North Korean hackers stole nearly $2B as weak passwords and poor key management cost Web3 platforms $4B in 2025. Here\u2019s what went wrong.","breadcrumb":{"@id":"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/#primaryimage","url":"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/4k-60-FPS-2025-12-30T151603-compressed.jpg","contentUrl":"https:\/\/tradebrains-wp.s3.ap-south-1.amazonaws.com\/crypto\/wp-content\/uploads\/2025\/12\/4k-60-FPS-2025-12-30T151603-compressed.jpg","width":1280,"height":854},{"@type":"BreadcrumbList","@id":"https:\/\/tradebrains.in\/crypto\/north-korea-steals-2-billion-how-weak-passwords-cost-web3-4-billion-in-2025\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/tradebrains.in\/crypto\/"},{"@type":"ListItem","position":2,"name":"North Korea Steals $2 Billion: How Weak Passwords Cost Web3 $4 Billion in 2025"}]},{"@type":"WebSite","@id":"https:\/\/tradebrains.in\/crypto\/#website","url":"https:\/\/tradebrains.in\/crypto\/","name":"Trade Brains Crypto","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/tradebrains.in\/crypto\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/tradebrains.in\/crypto\/#\/schema\/person\/ba5a7bb89667e221816ab991e2566edb","name":"Crypto Editorial","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/tradebrains.in\/crypto\/#\/schema\/person\/image\/36ff8defa782859d229cf17fb46991a0","url":"https:\/\/secure.gravatar.com\/avatar\/bd7d6331c5ab74181158fb2f0f0d9eada16909507ed513a20867478cf3bbdd43?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/bd7d6331c5ab74181158fb2f0f0d9eada16909507ed513a20867478cf3bbdd43?s=96&d=mm&r=g","caption":"Crypto Editorial"},"description":"The Trade Brains Crypto Editorial is a collective of seasoned crypto analysts, blockchain researchers, and digital asset traders with over 10+ years of combined experience in the cryptocurrency ecosystem.","url":"https:\/\/tradebrains.in\/crypto\/author\/crypto-editorial-team\/"}]}},"authors":[{"term_id":2834,"user_id":7,"is_guest":0,"slug":"crypto-editorial-team","display_name":"Crypto Editorial","avatar_url":"https:\/\/secure.gravatar.com\/avatar\/bd7d6331c5ab74181158fb2f0f0d9eada16909507ed513a20867478cf3bbdd43?s=96&d=mm&r=g","author_category":"","first_name":"Crypto","last_name":"Editorial","user_url":"","job_title":"","description":"The Trade Brains Crypto Editorial is a collective of seasoned crypto analysts, blockchain researchers, and digital asset traders with over 10+ years of combined experience in the cryptocurrency ecosystem."}],"_links":{"self":[{"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/posts\/2846","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/comments?post=2846"}],"version-history":[{"count":2,"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/posts\/2846\/revisions"}],"predecessor-version":[{"id":2852,"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/posts\/2846\/revisions\/2852"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/media\/2853"}],"wp:attachment":[{"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/media?parent=2846"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/categories?post=2846"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/tags?post=2846"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/tradebrains.in\/crypto\/wp-json\/wp\/v2\/ppma_author?post=2846"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}