South Korean Police Cold Wallet Risk Incident: 22 Bitcoin Transferred Abnormally

South Korean law enforcement agencies recently uncovered a major asset management risk incident. According to The Block, the Seoul Gangnam Police Department discovered during an internal review that 22 Bitcoins (valued at approximately $1.5 million at the time) seized in November 2021 were transferred abnormally while stored in a USB cold wallet. This finding exposed serious vulnerabilities in government digital asset management and reignited industry discussions about cold wallet security.

Assets Seized and Transferred from Cold Wallets, Multi-Agency Joint Investigation Launched

The incident involves the asset management system of the Northern Gyeonggi Provincial Police Agency. The abnormal transfer of the 22 Bitcoins from the cold wallet went unnoticed for some time, due to a prior investigation interruption. Notably, the USB device storing these assets was not lost or stolen, indicating that the asset loss likely involved internal management loopholes. The Northern Gyeonggi Police have officially initiated an internal investigation, focusing on tracing the specific flow of funds and whether any internal personnel mishandled the assets. Authorities have not yet publicly disclosed the progress of the investigation.

Systemic Risks Surface, Nationwide Asset Management Inspection Underway

This incident is not isolated. Recently, the loss of 320 Bitcoins seized by the Gwangju District Prosecutors Office provided clear evidence of similar management vulnerabilities. The Gwangju prosecutors’ case involved theft after personnel mistakenly accessed a phishing website, highlighting that human error risks also exist in cold wallet management. Based on these incidents, Korean law enforcement has launched a nationwide special inspection of seized asset management to identify systemic risks in government digital asset custody.

Cold Wallets Are Not Completely Secure; Multi-Layered Protection Systems Urgently Needed

While cold wallets are generally considered the safest way to store digital assets, this incident shows that the security of the technical solution alone cannot fully eliminate management risks. Using USB cold wallets involves multiple management aspects such as access control, activity logging, and staff training—any lapse in these areas can lead to asset loss. Once the police investigation results are released, they are expected to provide important reference for digital asset management frameworks of governments and financial institutions worldwide. This also serves as a reminder that organizations holding cryptocurrencies need to implement multi-signature schemes, permission separation, regular audits, and other protective mechanisms to truly ensure security.