South Korea’s Nationwide Tax Service (NTS) is dealing with intense scrutiny after a leak of a non-public safety key. This error led to the consecutive theft of 4 million seized PRTG tokens (approx. $4.8 million).
The debacle raises critical questions on whether or not the Korean authorities can securely handle the digital property it seizes.
A Comedy of Errors
The incident started on February 26 throughout a press convention relating to high-value tax delinquents. The NTS distributed photographs of seized cold-storage USB wallets to showcase its enforcement success. Nevertheless, these photos inadvertently included the “mnemonic code,” a 24-word grasp key used to entry digital property.
In keeping with blockchain knowledge and police studies, the PRTG tokens have been stolen twice inside 24 hours. The primary breach occurred early on February 27. A person, claiming to be an extraordinary investor, used the uncovered code to empty the pockets.
In a shocking twist, this “first hacker” contacted the police and media on February 28. He submitted a confession, stating he took the cash “like picking up waste paper” as a result of it was too simple. He claimed he returned the total 4 million PRTG tokens to the NTS pockets shortly after.
The restoration was short-lived. Simply two hours after the return, a second entity focused the identical susceptible pockets. This second actor efficiently transferred your complete steadiness to a pockets flagged for “fake phishing” actions.
Systemic Failures in Asset Administration
Safety specialists criticized the NTS for failing to safe the returned funds. The company didn’t transfer the property to a brand new, safe pockets after the preliminary breach. This allowed the second thief to make use of the identical uncovered mnemonic code.
The NTS acknowledged they can not present particulars because of the ongoing investigation. Nevertheless, they maintained that no additional administrative errors occurred throughout the second switch.
The stolen asset, PRTG, is primarily traded on a single trade, MEXC. Specialists notice that the $4.8 million valuation is only theoretical, because the market is illiquid. “The actual realizable value is likely only a few thousand dollars,” stated Professor Cho Jae-woo of Hansung College. Any try to liquidate such a big quantity would trigger the PRTG value to crash immediately.
Authorities Apologizes and Responds
The NTS issued a proper apology on March 1, accepting full accountability.
“This is unequivocally the fault of the National Tax Service,” the company stated. It blamed the breach on the careless provision of unique photographs containing delicate knowledge to the media. The company pledged an exterior safety audit and stronger pre-release assessment procedures.
The NTS has requested a police investigation, and the Nationwide Police Company’s Cyber Terror Response unit has opened a preliminary inquiry. Police are monitoring which media shops acquired excessive‑decision photos containing the mnemonic and who had entry to them.
In current months, the nation’s prosecutors briefly misplaced management of 320 bitcoin, whereas one in all its police stations found 22 lacking bitcoin from a vault. All three of Korea’s main investigative and enforcement our bodies have now confronted excessive‑profile failures in crypto custody. Analysts say legislation‑enforcement businesses should quickly enhance their technical competence and operational controls as criminals more and more launder proceeds via crypto.
