The person at the center of this case
Multiple financial institutions and virtual currency exchanges
Cold Case · Open
5 years waiting · since 2020
PARK JIN HYOK
Justice for Multiple financial institutions and virtual currency exchanges — the trail went cold in 2020, but the truth hasn't.
Start here
Key leads to think about
🎯
suspect
Lead #1What is Park Jin Hyok's current location and operational status within North Korea's Reconnaissance General Bureau (RGB)?
🔍
evidence
Lead #2What specific financial institutions and virtual currency exchanges were targeted, and how much currency was stolen?
👤
person
Lead #3Has Park Jin Hyok traveled to China or other countries since 2018, and are there any recent sightings or intelligence reports?
Park Jin Hyok is an alleged North Korean state-sponsored computer programmer linked to the Lazarus Group and APT38, responsible for some of the costliest cyber intrusions in history, including theft from financial institutions and virtual currency exchanges. Federal charges were filed against him in 2018 and updated in December 2020 for conspiracy to commit wire fraud, bank fraud, and computer intrusions. He remains at large, believed to be in North Korea, making his apprehension and prosecution a significant international cybercrime challenge.
Case
#1162
North Korea
United States District Court, Central District of California; Federal Bureau of Investigation
Try asking
Claim this imported case
A one-time $10 claim transfers this imported case workspace to your account. You get 10 uploads for this case, 25 daily AI questions for this case, and public tips with files route to you.
10 uploads25 AI questions/day
This does not start a subscription. When the included limits are reached, the Personal plan unlocks more workspace capacity.
More leads to consider
Beyond the top three above — each detail below could be the thread that pulls this case open.
💡
clue
Lead #4How do the Lazarus Group and APT38 operational patterns connect to Park's alleged role as a state-sponsored programmer?
Have information about any of these leads?
Even the smallest detail could be the key to solving this case.
Official wording
Source Narrative
Conspiracy to Commit Wire Fraud and Bank Fraud; Conspiracy to Commit Computer-Related Fraud (Computer Intrusion) Caution: Park Jin Hyok is allegedly a state-sponsored North Korean computer programmer who is part of an alleged criminal conspiracy responsible for some of the costliest computer intrusions in history. These intrusions caused damage to computer systems of, and stole currency and virtual currency from, numerous victims.
Park was alleged to be a participant in a wide-ranging criminal conspiracy undertaken by a group of hackers of the North Korean government’s Reconnaissance General Bureau (RGB). The conspiracy comprised North Korean hacking groups that some private cybersecurity researchers have labeled the “Lazarus Group” and Advanced Persistent Threat 38 (APT38).
On December 8, 2020, a federal arrest warrant was issued for Park in the United States District Court, Central District of California, after he was charged with one count of conspiracy to commit wire fraud and bank fraud, and one count of conspiracy to commit computer fraud (computer intrusions). A federal arrest warrant was previously issued for Park on June 8, 2018, after he was charged with one count of conspiracy to commit wire fraud and one count of conspiracy to commit computer-related fraud (computer intrusion) in a federal criminal complaint.
Remarks: Park is a North Korean citizen last known to be in North Korea. Park has traveled to China in the past and has reported dates of birth in 1984 and 1981.
Timeline of Events
🕵️
2018-06-08
Initial Federal Arrest Warrant Issued
Federal arrest warrant issued for Park Jin Hyok in the United States District Court, Central District of California, charged with conspiracy to commit wire fraud and conspiracy to commit computer-related fraud (computer intrusion).
🕵️
2020-12-08
Updated Federal Arrest Warrant Issued
New federal arrest warrant issued charging Park with one count of conspiracy to commit wire fraud and bank fraud, and one count of conspiracy to commit computer fraud (computer intrusions).
Case Information
Incident:June 8, 2018
Last Updated:June 14, 2026
Leave a comment
Comments
Case Information
Incident:June 8, 2018
Last Updated:June 14, 2026