Leaders of the Group of Seven (G7) have officially labeled North Korea’s cryptocurrency theft campaign as a global security threat, signaling a tougher international stance against state-sponsored cybercrime. During the recent G7 summit in Evian, France, world leaders expressed growing concern that billions of dollars stolen from crypto platforms are being used to support Pyongyang’s nuclear weapons and ballistic missile development programs.
In their joint statement, the G7 reaffirmed its commitment to the complete denuclearization of North Korea while calling for stronger cooperation to combat the country's increasingly sophisticated cyber operations.
Officials emphasized that crypto theft is no longer viewed as ordinary financial crime, but as a national security issue with global implications.
North Korea’s Hacking Campaign Continues to Expand
The latest warning comes after years of increasingly aggressive attacks attributed to North Korea-linked hacking groups, most notably the infamous Lazarus Group.
According to blockchain intelligence firms and United Nations investigations, these cybercriminal organizations have stolen billions of dollars in cryptocurrency, helping generate revenue for the isolated regime despite international sanctions.
Industry estimates suggest that North Korean hackers stole at least $2 billion worth of digital assets during 2025 alone, bringing the cumulative amount linked to DPRK-backed cyber groups to approximately $7.35 billion by 2026.
Researchers estimate that 64% of all crypto stolen globally during 2025 was linked to North Korean actors, while that figure climbed to 76% of recorded crypto thefts during early 2026, highlighting the country's dominant role in blockchain-related cybercrime.
Hackers Are Using Increasingly Sophisticated Methods
Cybersecurity experts warn that North Korean operatives have significantly evolved their attack strategies.
Rather than relying solely on technical exploits, hackers increasingly pose as job recruiters, venture investors, software developers, or IT contractors to infiltrate cryptocurrency companies and decentralized finance projects from within.
Several major attacks have already been attributed to these tactics, including the $1.5 billion Bybit hack, the $285 million Drift Protocol exploit, and the recent $36 million Humanity Protocol attack.
The growing sophistication of these operations has raised concerns among governments and blockchain security firms that crypto infrastructure remains a prime target for state-sponsored cyber espionage.
Governments Prepare Stronger Crypto Oversight
Although the G7 did not announce new sanctions or enforcement actions during the summit, the language used in its final statement suggests that member nations are preparing a far more coordinated response.
Future measures could include enhanced blockchain surveillance, stricter compliance requirements for cryptocurrency exchanges, improved international intelligence sharing, and faster cross-border asset recovery efforts aimed at tracking stolen digital funds.
The latest declaration demonstrates that governments increasingly view cryptocurrency-related cybercrime as part of broader geopolitical security challenges rather than isolated financial offenses. As North Korea’s cyber capabilities continue expanding, regulators worldwide appear ready to tighten oversight across the digital asset industry in an effort to disrupt illicit financing networks.
