South Korean prosecutors probe a $48M Bitcoin loss after seized crypto vanished in a phishing attack during a routine asset inspection.
South Korean prosecutors are investigating the loss of about $48 million in seized Bitcoin after discovering the assets were missing.
The disappearance was found during a routine inspection of confiscated financial holdings, according to local reports.
Authorities believe the loss occurred after a phishing attack compromised access credentials linked to the stored cryptocurrency.
Discovery During Routine Asset Review
The Gwangju District Prosecutors’ Office identified the missing Bitcoin while checking seized digital assets tied to a past criminal case.
Reports state that the value of the missing Bitcoin was about 70 billion won, or $48 million. The exact date of the seizure was not publicly disclosed.
How ridiculous! 🇰🇷The South Korean government's confiscated Bitcoin has gone missing?
The Gwangju District Prosecutor's Office in South Korea recently discovered that the confiscated Bitcoin was missing during an inventory of seized assets. The private keys for these Bitcoins… pic.twitter.com/1aXEGTkYvN
— PiNetwork DEX⚡️阿龙 (@fen_leng) January 22, 2026
Officials stated that the loss was detected during standard internal checks. These inspections are conducted to ensure seized assets remain secure.
The discovery prompted immediate concern within the prosecutors’ office and led to an internal review. The office declined to provide further details, citing the active investigation.
A prosecution official told Yonhap News, “We are conducting an investigation to track the circumstances and whereabouts of the seized items.”
The official added that specific details could not be confirmed at this time.
Phishing Attack Linked to Security Breach
Local media reported that the Bitcoin was taken after a password was exposed outside the agency.
Investigators believe the exposure happened when an employee accessed a fraudulent website. The site reportedly imitated a legitimate service and captured sensitive login data.
Phishing attacks are a common method used by cybercriminals in crypto theft. Attackers often send emails or links that appear authentic.
Victims then enter private information, which allows attackers to access digital wallets.
A prosecutors’ office official reportedly confirmed phishing as the suspected cause. The official said the incident followed access to a scam website.
Authorities are now reviewing internal security procedures and employee access controls.
Related Reading: He Turned Cans Into Bitcoin: One Brazilian’s 2 Year Path to 1 BTC
Ongoing Investigation and Broader Context
South Korean authorities have launched a full investigation to trace the stolen Bitcoin.
The focus includes identifying how the credentials were compromised and whether internal controls failed. Officials are also examining possible recovery options.
The case comes as law enforcement agencies worldwide hold large amounts of seized cryptocurrency. These assets are often stored for long periods during legal proceedings. However, custody methods are rarely disclosed to the public.
Similar cases abroad show the scale of crypto held by authorities. In the United States, the Secret Service seized $225 million in crypto with support from Coinbase.
In the United Kingdom, officials have debated retaining billions in seized Bitcoin instead of returning funds to victims.
Coinbase helped drive a major law enforcement win: the U.S. Secret Service has seized $225M in stolen crypto tied to pig butchering scams—and is returning funds to victims. If you think you were affected, you may be eligible for restitution. Learn more: https://t.co/0VirllyzM7
— Coinbase Support (@CoinbaseSupport) June 24, 2025
The South Korean case adds attention to digital asset security within public institutions.
Investigators continue to track the missing funds while avoiding public disclosure. Authorities have not announced a timeline for the investigation’s conclusion.
