Phishing attack causes disappearance of bitcoins confiscated in Seoul investigation

Promoters of the Gwangju district in South Korea are investigating the disappearance of a considerable amount of bitcoins that had been seized in a criminal operation. According to an internal audit, a phishing attack during the official storage process may have been responsible for the disappearance of the digital assets. This incident underscores a troubling reality: even government authorities are vulnerable to the same threats that affect individual investors and cryptocurrency platforms.

Phishing compromises official storage security

An employee cited by Yonhap News Agency stated: “We are currently investigating the circumstances surrounding the loss and the whereabouts of the seized items, but we cannot confirm any specific details.” The investigation revealed that the phishing attack occurred during the official management of the crypto assets, a process that should be protected by strict security protocols.

The phishing attack in cryptography works deceptively: scammers impersonate trusted wallets or platforms to convince users to share their private keys, passwords, or seed phrases. This technique is particularly effective in the crypto sphere due to the irreversible and decentralized nature of blockchain transactions, where there is no central authority capable of recovering stolen funds.

Cryptography scams hit record highs in 2025

The numbers reveal the growing scale of the problem. According to Chainalysis, scams and frauds in cryptography drained approximately US$17 billion from victims during 2025. Even more concerning: impersonation attacks increased by 1,400% compared to the previous year, demonstrating an alarming acceleration of these criminal operations.

The sophistication of attacks has also evolved. Criminals now use AI-powered technology to create convincing deepfakes and execute industrial-scale money laundering schemes. Chainalysis found that AI-based attacks are 4.5 times more profitable than traditional tactics, fueling an increasingly professionalized criminal economy.

The challenge of phishing in government operations

The case in Gwangju highlights a critical challenge: government authorities, who often deal with confiscated cryptocurrencies in operations against money laundering and organized crime, face the same security vulnerabilities as financial institutions and trading platforms.

The loss underscores a fundamental issue regarding the secure management of digital assets in official environments. When organizations responsible for safeguarding cryptocurrencies are compromised via phishing, it not only harms specific criminal cases but also raises questions about the institutional capacity to protect these emerging assets. The ongoing investigation in Seoul may provide valuable lessons on how to improve security protocols and internal awareness in government agencies operating with cryptocurrencies.