South Korean Tax Agency Exposes Wallet Seed, $4.8M in Crypto Stolen

First reported

28.02.2026 17:17

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

South Korea’s National Tax Service (NTS) accidentally exposed the mnemonic recovery phrase of a seized cryptocurrency wallet during a press release, leading to the theft of $4.8 million in crypto assets. The funds were stored in a Ledger cold wallet confiscated during raids on tax evaders. The recovery phrase, visible in photos released by the NTS, allowed attackers to transfer 4 million Pre-Retogeum (PRTG) tokens to a new address. The NTS has since removed the press release, and no investigation details have been disclosed. This incident highlights the critical importance of securing wallet seed phrases and the risks of exposing them publicly.

Timeline

28.02.2026 17:17 1 articles · 3h ago

South Korean Tax Agency Exposes Wallet Seed, $4.8M in Crypto Stolen
The National Tax Service (NTS) of South Korea accidentally exposed the mnemonic recovery phrase of a seized cryptocurrency wallet in a press release. This exposure led to the theft of $4.8 million in crypto assets, as attackers transferred 4 million Pre-Retogeum (PRTG) tokens to a new address. The NTS has since removed the press release, but no investigation details have been disclosed.
Show sources

$4.8M in crypto stolen after Korean tax agency exposes wallet seed — www.bleepingcomputer.com — 28.02.2026 17:17
Open in new tab

Information Snippets

The NTS seized a Ledger cold wallet containing crypto assets worth approximately $5.6 million during raids on 124 high-value tax evaders.
First reported: 28.02.2026 17:17

1 source, 1 article
Show sources
- $4.8M in crypto stolen after Korean tax agency exposes wallet seed — www.bleepingcomputer.com — 28.02.2026 17:17
The NTS released photos of the Ledger device, including a handwritten note of the wallet recovery phrase, which was not redacted.
First reported: 28.02.2026 17:17

1 source, 1 article
Show sources
- $4.8M in crypto stolen after Korean tax agency exposes wallet seed — www.bleepingcomputer.com — 28.02.2026 17:17
Attackers transferred 4 million PRTG tokens, worth $4.8 million, to a new address shortly after the press release was published.
First reported: 28.02.2026 17:17

1 source, 1 article
Show sources
- $4.8M in crypto stolen after Korean tax agency exposes wallet seed — www.bleepingcomputer.com — 28.02.2026 17:17
The attackers first deposited a small amount of Ethereum (ETH) into the wallet to pay transaction fees before transferring the PRTG tokens.
First reported: 28.02.2026 17:17

1 source, 1 article
Show sources
- $4.8M in crypto stolen after Korean tax agency exposes wallet seed — www.bleepingcomputer.com — 28.02.2026 17:17
The press release has been removed from the NTS website, and no investigation details have been disclosed.
First reported: 28.02.2026 17:17

1 source, 1 article
Show sources
- $4.8M in crypto stolen after Korean tax agency exposes wallet seed — www.bleepingcomputer.com — 28.02.2026 17:17