UrsaClimb Logo

Clueless cops post seized crypto wallet password. $5M quickly stolen.

Ars Technica
by Ashley Belanger
March 2, 2026
AI-Generated Deep Dive Summary
South Korean police made a costly mistake after sharing sensitive details about a seized cryptocurrency wallet in a press release. The department inadvertently included images of a handwritten note containing the full recovery phrase for a Ledger cold wallet, which allowed thieves to steal $5 million worth of crypto assets within hours. The error led to widespread media coverage and a public apology from law enforcement, who acknowledged the preventable loss of funds. The incident began when police announced their successful seizure of $5.6 million in cryptocurrency from 124 wealthy individuals accused of tax evasion. Included in the press release were images of a Ledger device used as a "cold wallet," which is typically designed to store crypto offline for security purposes. However, one image showed a note next to the device revealing its full mnemonic recovery phrase—a string of words that acts as a master key to access and transfer funds without additional authentication. This oversight allowed thieves to quickly drain most of the seized assets. The theft highlights the dangers of exposing sensitive cryptographic information, even in official communications. While law enforcement removed the press release shortly after realizing the mistake, it was already widely shared by media outlets and tech publications. The incident underscores the importance of handling cryptocurrency securely, even when dealing with law enforcement. Mismanagement of crypto assets can have severe financial consequences, as seen in this case where a simple oversight led to a significant loss of funds. This story matters to readers interested in tech and cybersecurity because it illustrates the vulnerabilities inherent in digital asset management. While cold wallets are generally considered secure, their associated recovery phrases must be treated with utmost care. The incident also raises questions about how law enforcement should handle sensitive crypto-related information, emphasizing the need for better protocols to prevent similar incidents in the future.
Verticals
techscience
Originally published on Ars Technica on 3/2/2026