North Korea crypto hackers tap ChatGPT, Malaysia road money siphoned: Asia Express

North Korean hackers automate crypto crime with ChatGPT

North Korea’s state-sponsored hacking groups are automating cryptocurrency theft with the help of AI tools like ChatGPT, according to South Korean cybersecurity officials.

Lee Seul-gi, lead researcher at the Korea Internet & Security Agency (KISA), said attackers are using AI-configured scripts to automatically transfer crypto to their own wallets once a victim’s balance exceeds $200.

During a security conference in Seoul on Thursday, Lee shared the findings of an investigation that analyzed 39 virtual server images seized in September, according to local media.

The analysis uncovered evidence of operations by two North Korea-linked groups: Kimsuky, which allegedly targeted cryptocurrency investors, and Andariel, which sought military-related documents.

According to Lee, the attackers relied on a variety of online information, such as searching Google for crypto-related Python code, browsing forums and watching YouTube tutorials. They also heavily relied on ChatGPT to generate scripts for wallet tracking, API queries, phishing sites and data parsing.

Lee reportedly said internet activity history revealed repeated prompts related to wallet balance checks, mnemonic input tools and price-fetching scripts. A key feature of the operation involved real-time wallet monitoring, which was eventually used to automate crypto transfers.

The hackers are suspected of infiltrating a South Korean crypto community with about a million members using an online forum, collecting usernames and email addresses to target with phishing campaigns.

The entire process appears to have been supported by ChatGPT-generated code, according to Lee, adding that his research team has not determined whether the scripts were manually refined by the attackers.

ChatGPT developer OpenAI appears aware that its platform is being misused by North Korean cyber units. In early June, the company said it had banned accounts believed to be linked to North Korean operatives, including individuals suspected of using AI tools to obtain remote IT jobs, which has been a rising issue that has also impacted the cryptocurrency industry.

Malaysia’s highway development funds converted to crypto for personal use

The Malaysian Anti-Corruption Commission (MACC) reported that 11 million Malaysian ringgit (about $2.3 million), intended to fund the Maju Expressway Extension (MEX II) project, has been misappropriated and diverted into cryptocurrency for personal expenses.

The 18-kilometer MEX II project kicked off in 2016 and was due for completion in 2019, but funds meant for its development appear to have been siphoned off. The MACC has so far questioned 55 individuals and made nine arrests. It has also frozen 14 personal accounts and eight company accounts totaling 156 million ringgit as part of its probe.

Investigators believe the crypto-linked funds were part of a larger web of financial misconduct involving alcohol, unlicensed gambling and high-end luxury spending. The wider scandal is believed to involve hundreds of millions of ringgit and centers on a high-profile corporate figure with the title “Tan Sri,” one of Malaysia’s highest civilian honorifics. The individual allegedly channeled funds through proxy companies and personal accounts, including those belonging to his wife.

MACC Chief Commissioner Azam Baki said at a press conference that at least ten more witnesses will be called in the coming weeks and that formal statements from the banks involved are being compiled.

Azam added that he expects the case to be wrapped up within two months.

Hong Kong’s crypto policy to start with stablecoin licenses

The Financial Services and the Treasury Bureau released an updated policy statement on Thursday outlining its strategy for integrating cryptocurrencies into Hong Kong’s financial system.

The plan introduces a framework divided into four segments: legal, tokenized products, stablecoins and talent.

Key regulatory reforms include upcoming licensing regimes for digital asset dealers and custodians, led by the Securities and Futures Commission.

In parallel, a legal…