Hyperliquid Labs Denies North Korea Exploit Reports, Confirms All User Funds Secure

Last updated:

Journalist

Hassan Shittu

Journalist

Hassan Shittu

About Author

Hassan, a Cryptonews.com journalist with 6+ years of experience in Web3 journalism, brings deep knowledge across Crypto, Web3 Gaming, NFTs, and Play-to-Earn sectors. His work has appeared in…

Last updated:

Why Trust Cryptonews

Cryptonews has covered the cryptocurrency industry topics since 2017, aiming to provide informative insights to our readers. Our journalists and analysts have extensive experience in market analysis and blockchain technologies. We strive to maintain high editorial standards, focusing on factual accuracy and balanced reporting across all areas – from cryptocurrencies and blockchain projects to industry events, products, and technological developments. Our ongoing presence in the industry reflects our commitment to delivering relevant information in the evolving world of digital assets. Read more about Cryptonews

Ad Disclosure

We believe in full transparency with our readers. Some of our content includes affiliate links, and we may earn a commission through these partnerships. Read more

Hyperliquid, a prominent on-chain perpetual futures exchange, is under scrutiny following claims of wallet activity linked to North Korean hackers.

Following the allegation, the platform token HYPE dropped over 25%, from $34 to $25. The platform assured users that their funds remained secure and accounted for.

Security Dispute or Misunderstanding? Hyperliquid’s Response to Allegations of North Korean Hackers

The controversy began when Taylor Monahan, a security expert from MetaMask, reported suspicious trades involving wallets tied to North Korean hackers.

According to Monahan, these wallets traded ETH on Hyperliquid, resulting in liquidations exceeding $700,000.

On X (formerly Twitter), Monahan suggested the activity was not regular trading but potential vulnerability testing. “DPRK doesn’t trade. DPRK tests,” she posted.

The allegations triggered widespread user withdrawals. Data from Hashed’s Dune Analytics dashboard revealed over $194 million in USDC was withdrawn on Monday alone.

In response, Hyperliquid Labs denied any exploits or vulnerabilities on the platform. In a statement on its Discord channel, the team reassured users that funds remained secure.

The team stated,

“Hyperliquid Labs is aware of reports circulating regarding activity by supposed DPRK addresses; there has been no DPRK exploit—or any exploit for that matter—of Hyperliquid. All user funds are accounted for.”

The platform highlighted its robust security framework. This includes a bug bounty program and adherence to best practices in blockchain analytics.

Hyperliquid Labs also addressed allegations of unprofessional interactions with a security advisor. They stated that the advisor’s conduct prompted the team to consult trusted partners instead.

The allegations and subsequent market uncertainty immediately impacted Hyperliquid’s native token, HYPE.

The token dropped over 25%, from $34 on Sunday to a low of $25 on Monday. However, according to DexScreener, the price has since rebounded and is trading at $27.

Despite the controversy, Hyperliquid continues gaining traction. According to Dune Analytics, the platform accounts for over 55% of the trading volume of on-chain perpetual futures.

North Korean Hackers Steal Over $1.3 Billion in Crypto, Doubling 2023’s Theft Total

According to Chainalysis, North Korean hackers doubled their crypto thefts from 2023 to 2024, stealing over $1.3 billion.

In its Dec. 19 report, the firm revealed that these hackers were responsible for 47 incidents, accounting for 61% of all crypto thefts in 2024. This marked a sharp increase from $660 million stolen in 2023.

Chainalysis noted an increase in the size of individual heists. Attacks between $50 and $100 million and those exceeding $100 million were more common in 2024. The firm said the DPRK is improving at executing larger and faster exploits.

North Korean hackers have been linked to some of the most significant breaches in the crypto industry. U.S. authorities frequently sanction entities involved in the country’s laundering operations.

Despite the rise in DPRK-related hacks, global crypto hacking activity declined in the third and fourth quarters of 2024.

Chainalysis suggested North Korea may rely less on crypto theft due to closer ties with Russia. However, it warned of potential changes by year’s end, noting hackers often strike during holidays.

The timing of reduced activity after July 1 coincided with Russian President Putin’s visit to Pyongyang, though Chainalysis stated the connection remains unclear.