Two individuals have been arrested in South Korea over the theft of 22 seized Bitcoin (BTC), now valued at approximately $1.4 million, after the funds were improperly stored in a third-party cold wallet. The incident, which has been under investigation by the Gyeonggi Northern Provincial Police Agency, highlights a series of policy breaches and security lapses that led to the loss of the cryptocurrency.
According to a report by South Korean publication Dong-A Ilbo, the seized Bitcoin was initially obtained through a voluntary submission following a hack on a local exchange in November 2021. However, instead of being stored in a cold wallet under police control, as per protocol, the BTC was placed in a third-party cold wallet. This third party, connected to the hacking case, also had access to the wallet’s seed phrase, a critical security measure that the police themselves were unaware of.
Policy Breaches and Security Failures
Under the police station’s established protocol, seized cryptocurrencies are supposed to be stored securely in a cold wallet managed exclusively by the police. The failure to adhere to this protocol not only compromised the security of the seized assets but also exposed the police to significant financial and reputational risks.
Strange Circumstances Surrounding the Theft
The details surrounding the theft are still being investigated, but it is believed that an official from a company with access to the seed phrase provided it to an individual known as “Mr. Jeong” as part of a borrowing agreement. This unauthorized transfer of the seed phrase is a critical point of interest in the ongoing investigation.
Adding another layer of complexity to the case, an investigator working on the initial hacking case was sentenced in August 2025 for bribery charges. The investigator had been offered money in exchange for a favorable investigation, further raising questions about the integrity of the initial seizure and subsequent handling of the seized Bitcoin.
Delayed Discovery and Nationwide Audit
It took four years for the authorities to discover that the funds had gone missing. The problem was flagged during a nationwide audit in response to the disappearance of 320 BTC in a separate case at the Gwangju District Prosecutors’ Office. This delay in detection underscores the need for more robust oversight and auditing procedures in the management of seized digital assets.
Implications for Crypto Regulation and Security
The incident has significant implications for the regulation and security of cryptocurrencies, particularly in the context of law enforcement. It highlights the need for stricter adherence to established protocols and the importance of continuous training and education for law enforcement personnel handling digital assets.
As the use of cryptocurrencies continues to grow, the risks associated with their improper handling and storage become increasingly apparent. This case serves as a stark reminder of the challenges and vulnerabilities that must be addressed to ensure the integrity and security of digital assets in the hands of law enforcement and regulatory bodies.
Looking Forward
The arrests of the two suspects are a step in the right direction, but the broader issues of policy adherence and security in the management of seized cryptocurrencies remain to be addressed. Law enforcement agencies must prioritize the implementation of robust security measures and regular audits to prevent such incidents from occurring in the future.
About the Author
