US Sanctions Cryptocurrency 'Mixing' Service for Aiding North Korean Hackers

pcmag.com:

For the first time, the US is sanctioning a cryptocurrency “mixing” service for helping North Korea launder some of the funds stolen in the $620 million hack of Ronin Network. 

The sanctions target Blender.io, a website that charges to “anonymize bitcoin transactions” by mixing it with funds from other users. The US Treasury Department claims the North Korean hackers behind the Ronin Network heist recently tried to launder $20.5 million of the stolen funds through Blender.io. 

In addition, the US Treasury Department is signaling it’ll go after other cryptocurrency mixing services that are found helping hackers. The sanctions against Blender.io essentially outlaw US persons and groups from conducting any business with the cryptocurrency service. Hence, using Blender.io is against US law unless the Treasury Department grants a license to do so. 

“Virtual currency mixers that assist illicit transactions pose a threat to US national security interests,” said Under Secretary of the Treasury for Terrorism and Financial Intelligence Brian Nelson in the announcement.

The sanctions represent the US’s latest effort to stop the North Korean state-sponsored hacking group Lazarus, which is best known for the Sony Pictures hack of 2014 and the WannaCry ransomware outbreak. Last month, the FBI linked the Ronin Network heist to Lazarus, too. 

In recent years, the hacking group has been focused on stealing from banks and cryptocurrency-related services. But to cash out the stolen funds, Lazarus has had to rely on laundering services, which can help mask the origins of the ill-gotten gains. This led North Korean hackers to launder over 65% of their stolen funds through multiple mixing services, according to the cryptocurrency tracking