TL;DR:
- Hyundai acquired an electronic mail demanding 13 BTC, threatening 11:30 AM blasts at Yeonji-dong and Yangjae-dong; police searches discovered no units.
- Samsung, KT, Kakao and Naver confronted related alerts; authorities reported no explosives confirmed. A Nigerian quantity threatened Indonesian colleges for $30,000 in Bitcoin.
- Korea targets stronger AML by mid-2026 after Upbit’s $30 million Lazarus-linked hack. Officers mentioned over $3.4 billion was stolen; $2.02 billion tied to North Korea, up 51%.
Hyundai Group’s headquarters in Seoul moved into incident response after police obtained a report of a threatening electronic mail demanding 13 Bitcoins. The message warned that if fee was not made, an explosion would happen at 11:30 AM, naming the Yeonji-dong constructing in Jongno-gu and the Hyundai Motor Group tower in Yangjae-dong, Seocho-gu, plus different amenities. Police dispatched particular forces and performed searches at each websites. With no suspected units discovered, operations regularly normalized as a 13 BTC bomb-ransom demand examined safety protocols. The 13 BTC was valued round $1.1 million, or KRW 16.4 billion, internally.
🚨 BREAKING: Bomb threats have hit Hyundai workplaces in Seoul.
An nameless sender demanded 13 BTC ($1.3M) to cease the assaults.
Police particular forces searched the buildings and, fortunately, discovered no explosives.
This follows a wave of comparable faux threats in opposition to Samsung, KT,… pic.twitter.com/xtEIwOZMd3
— Evan Luthra (@EvanLuthra) December 19, 2025
Bomb threats widen throughout Korea
The Hyundai alert landed amid a rising wave of chaebol-targeted threats that has pulled different main names into emergency drills. Samsung Electronics was cited in a Kakao customer support bulletin board publish that claimed it will blow up the agency’s headquarters in Yeongtong-gu, Suwon, and shoot govt chairman Lee Jae-yong with a do-it-yourself gun. One other publish appeared in KT’s on-line sign-up type, stating a do-it-yourself bomb was put in at its Bundang constructing in Jeongja-dong, Seongnam, prompting checks on vital infrastructure. Kakao’s Jeju and Pangyo websites and Naver additionally confronted threats. Authorities reported no explosives confirmed.
Even when searches come up empty, the sample is amplifying stakeholder unease, with authorities noting that nervousness amongst staff and native residents has been rising. Individually, crypto ransom techniques are reaching colleges and communities: a Nigerian quantity was tracked sending bomb threats tied to a $30,000 Bitcoin demand. The message went to a few overseas colleges in Indonesia, one in North Jakarta and two in South Tangerang, claiming bombs have been positioned on website. The sender mentioned the units would detonate inside 45 minutes if fee was not made, calling it “A message for EVERYONE.” in writing.
South Korea’s businesses plan stricter controls, together with stronger AML guidelines by mid-2026. Stress rose after a $30 million hack at Upbit that authorities attributed to North Korea’s Lazarus group and in comparison with a 2019 assault. The breach emerged throughout a press occasion for Naver Corp.’s $10.3 billion acquisition of Upbit mother or father Dunamu Inc. Upbit suspended deposits and withdrawals and pledged to cowl losses utilizing its property. Officers mentioned greater than $3.4 billion was stolen from January by means of early December; North Korea took $2.02 billion, a 51% YoY rise and $681 million above 2024’s $1.3 billion.
