South Korea’s Tax Agency Accidentally Exposes Wallet Keys, Triggers $4.8M Crypto Scare
South Korea’s National Tax Service (NTS) has found itself at the center of an embarrassing crypto mishap after publishing photos that accidentally exposed private wallet recovery phrases — allowing an unknown actor to temporarily drain millions of dollars in tokens.
In an official press release announcing the seizure of assets from repeat tax delinquents, the agency included high-resolution images of confiscated items. Among them were Ledger hardware wallets displayed next to handwritten sheets containing fully visible 12-word seed phrases.
Within hours, someone used that information to access the wallets.
$4.8 Million — At Least on Paper
Blockchain data shows the attacker first sent a small amount of ETH to the wallets to cover gas fees. They then transferred out 4 million Pre-Retogeum (PRTG) tokens — roughly 40% of the token’s total supply.
At face value, the tokens were reportedly worth about $4.8 million. But the reality was more complicated.
While the stash carried a multimillion-dollar theoretical valuation, the token had almost no meaningful market liquidity. The only active trading pair showed minimal volume, meaning any attempt to sell even a fraction of the holdings would likely have crashed the price. In practical terms, cashing out the full amount would have been nearly impossible.
Eventually, the tokens were returned to the original wallet.
It remains unclear whether the move was a white-hat intervention meant to highlight the security flaw — or simply the realization that the tokens couldn’t realistically be liquidated.
A Basic but Costly Security Failure
The incident stemmed from a simple but critical oversight: publicly revealing recovery phrases for self-custodied crypto wallets. In the crypto world, a seed phrase is effectively the master key. Anyone with access to it can control the assets.
A local professor reportedly compared the mistake to publicly inviting someone to empty your bank account.
The episode underscores the operational risks governments face as they increasingly seize and manage digital assets. Handling self-custodied crypto requires strict technical safeguards — and even small lapses can have immediate on-chain consequences.
Although the funds were ultimately returned and not dumped on the market, the situation has raised broader questions about how authorities handle digital asset seizures — and whether stronger internal security protocols are urgently needed.
