The person at the center of this case
Numerous financial institutions and cryptocurrency holders targeted by Lazarus Group/APT38
Cold Case · Open
5 years waiting · since 2020
PARK JIN HYOK
Justice for Numerous financial institutions and cryptocurrency holders targeted by Lazarus Group/APT38 — the trail went cold in 2020, but the truth hasn't.
Start here
Key leads to think about
🎯
suspect
Lead #1What is Park Jin Hyok's exact role within the Lazarus Group and APT38 hacking infrastructure?
🔍
evidence
Lead #2Which specific major financial breaches and cryptocurrency thefts can be directly attributed to Park's technical involvement?
📍
location
Lead #3Has Park traveled beyond North Korea and China, and are there other countries where he may currently be located?
Park Jin Hyok is an alleged North Korean state-sponsored computer programmer believed to be part of the Lazarus Group and APT38, criminal hacking groups responsible for some of the costliest computer intrusions in history, including major financial institution breaches and cryptocurrency thefts. Federal arrest warrants were issued in June 2018 and December 2020 for his involvement in conspiracy to commit wire fraud, bank fraud, and computer intrusions that caused extensive damage and theft across numerous victims. Park remains at large, last known to be in North Korea, making his apprehension dependent on international cooperation and intelligence operations.
Case
#1162
United States District Court, Central District of California; Federal Bureau of Investigation
Try asking
Claim this imported case
A one-time $10 claim transfers this imported case workspace to your account. You get 10 uploads for this case, 25 daily AI questions for this case, and public tips with files route to you.
10 uploads25 AI questions/day
This does not start a subscription. When the included limits are reached, the Personal plan unlocks more workspace capacity.
More leads to consider
Beyond the top three above — each detail below could be the thread that pulls this case open.
💡
clue
Lead #4What intelligence exists regarding Park's current whereabouts and potential aliases or travel documents?
Have information about any of these leads?
Even the smallest detail could be the key to solving this case.
Official wording
Source Narrative
Conspiracy to Commit Wire Fraud and Bank Fraud; Conspiracy to Commit Computer-Related Fraud (Computer Intrusion) Caution: Park Jin Hyok is allegedly a state-sponsored North Korean computer programmer who is part of an alleged criminal conspiracy responsible for some of the costliest computer intrusions in history. These intrusions caused damage to computer systems of, and stole currency and virtual currency from, numerous victims.
Park was alleged to be a participant in a wide-ranging criminal conspiracy undertaken by a group of hackers of the North Korean government’s Reconnaissance General Bureau (RGB). The conspiracy comprised North Korean hacking groups that some private cybersecurity researchers have labeled the “Lazarus Group” and Advanced Persistent Threat 38 (APT38).
On December 8, 2020, a federal arrest warrant was issued for Park in the United States District Court, Central District of California, after he was charged with one count of conspiracy to commit wire fraud and bank fraud, and one count of conspiracy to commit computer fraud (computer intrusions). A federal arrest warrant was previously issued for Park on June 8, 2018, after he was charged with one count of conspiracy to commit wire fraud and one count of conspiracy to commit computer-related fraud (computer intrusion) in a federal criminal complaint.
Remarks: Park is a North Korean citizen last known to be in North Korea. Park has traveled to China in the past and has reported dates of birth in 1984 and 1981.
Timeline of Events
🕵️
2018-06-08
Initial Federal Arrest Warrant Issued
First federal arrest warrant issued in connection with conspiracy to commit wire fraud and computer-related fraud
🕵️
2020-12-08
Second Federal Arrest Warrant Issued
Additional federal arrest warrant issued for conspiracy to commit wire fraud, bank fraud, and computer intrusions
Key Locations
Interactive map showing important locations related to this case
Case Information
Incident:June 8, 2018
Last Updated:April 29, 2026
Leave a comment
Comments
Case Information
Incident:June 8, 2018
Last Updated:April 29, 2026